[Feature] Support multiple ou search

Update logging
[Bugfix] Update jumpserver settings
2025-12-15 00:25:16 +00:00 · 2017-10-12 14:29:00 +08:00 · 2017-10-10 15:46:14 +08:00 · 2017-10-10 14:28:32 +08:00 · 2017-10-10 14:18:08 +08:00 · 2017-10-08 19:43:55 +08:00
673 changed files with 35476 additions and 27793 deletions
--- a/.github/ISSUE_TEMPLATE.md
+++ b/.github/ISSUE_TEMPLATE.md
@@ -0,0 +1,16 @@
+[简述你的问题]
+
+##### 使用版本
+[请提供你使用的Jumpserver版本 0.3.2 或 0.4.0]
+
+##### 问题复现步骤
+1. [步骤1]
+2. [步骤2]
+
+##### 具体表现[截图可能会更好些,最好能截全]
+
+
+##### 其他
+
+
+[注:] 完成后请关闭 issue
--- a/.gitignore
+++ b/.gitignore
@@ -1,46 +1,26 @@
-*.py[cod]
-.idea
-test.py
 .DS_Store
-db.sqlite3
-# C extensions
-*.so
-
-# Packages
-*.egg
-*.egg-info
+*.pyc
+*.pyo
+*.swp
+.env
+env
+env*
 dist
 build
-eggs
-parts
-bin
-var
-sdist
-develop-eggs
-.installed.cfg
-lib
-lib64
-__pycache__
-
-# Installer logs
-pip-log.txt
-
-# Unit test / coverage reports
-.coverage
+*.egg
+*.egg-info
+_mailinglist
+dump.rdb
 .tox
-nosetests.xml
-
-# Translations
-*.mo
-
-# Mr Developer
-.mr.developer.cfg
-.project
-.pydevproject
-.settings
+.cache/
+.idea/
+db.sqlite3
+config.py
+migrations/
 *.log
-logs/*
-keys/*
-jumpserver.conf
-nohup.out
+host_rsa_key
+*.bat
+tags
+jumpserver.iml
+.python-version
 tmp/*
--- a/.python-version
+++ b/.python-version
@@ -0,0 +1 @@
+system
--- a/22
+++ b/22
@@ -0,0 +1,22 @@
+FROM jumpserver/python:v3.6.1
+LABEL MAINTAINER Jumpserver Team <ibuler@qq.com>
+
+
+COPY . /opt/jumpserver
+WORKDIR /opt/jumpserver
+
+RUN yum -y install epel-release && yum clean all -y
+RUN cd requirements && yum -y install $(cat rpm_requirements.txt) && yum clean all -y
+RUN cd requirements && pip install -r requirements.txt 
+
+RUN rm -f data/db.sqlite3
+RUN rm -r .git
+RUN rm -f config.py
+
+VOLUME /opt/jumpserver/data
+VOLUME /opt/jumpserver/logs
+
+RUN cp config_docker.py config.py
+
+EXPOSE 8080
+CMD cd utils && sh make_migrations.sh && sh init_db.sh && cd .. && python run_server.py
--- a/16
+++ b/16
@@ -0,0 +1,16 @@
+FROM centos:centos6
+LABEL MAINTAINER Jumpserver Team <ibuler@qq.com>
+
+WORKDIR /tmp
+
+RUN yum -y install wget sqlite-devel xz gcc automake zlib-devel openssl-devel; yum clean all
+
+# Install Python
+RUN wget https://www.python.org/ftp/python/3.6.1/Python-3.6.1.tar.xz && \
+    tar xvf Python-3.6.1.tar.xz  && cd Python-3.6.1 && ./configure && make && make install &&  \
+    rm -rf /tmp/{Python-3.6.1.tar.xz,Python-3.6.1}
+
+RUN mv /usr/bin/python /usr/bin/python2
+RUN ln -s /usr/local/bin/python3 /usr/bin/python && ln -s /usr/local/bin/pip3 /usr/bin/pip
+RUN sed -i 's@/usr/bin/python@/usr/bin/python2@g' /usr/bin/yum
+
--- a/4
+++ b/4
@@ -1,4 +1,4 @@
-GNU GENERAL PUBLIC LICENSE
+                    GNU GENERAL PUBLIC LICENSE
                       Version 2, June 1991

 Copyright (C) 1989, 1991 Free Software Foundation, Inc., <http://fsf.org/>
@@ -336,4 +336,4 @@ This General Public License does not permit incorporating your program into
 proprietary programs.  If your program is a subroutine library, you may
 consider it more useful to permit linking proprietary applications with the
 library.  If this is what you want to do, use the GNU Lesser General
-Public License instead of this License.
+Public License instead of this License.
--- a/README.md
+++ b/README.md
@@ -1,80 +1,113 @@
-## 写在前面
- - 版本号变更 2.0 -> 0.2版本 3.0 -> 0.3版本
+## Jumpserver

-#欢迎使用Jumpserver
-**Jumpserver** 是一款由python编写开源的跳板机(堡垒机)系统，实现了跳板机应有的功能。基于ssh协议来管理，客户端无需安装agent。
-支持常见系统:
- 1. CentOS, RedHat, Fedora, Amazon Linux
- 2. Debian
- 3. SUSE, Ubuntu
- 4. FreeBSD
- 5. 其他ssh协议硬件设备
+[![Python3](https://img.shields.io/badge/python-3.6-green.svg?style=plastic)](https://www.python.org/)
+[![Django](https://img.shields.io/badge/django-1.11-brightgreen.svg?style=plastic)](https://www.djangoproject.com/)
+[![Ansible](https://img.shields.io/badge/ansible-2.2.2.0-blue.svg?style=plastic)](https://www.ansible.com/)
+[![Paramiko](https://img.shields.io/badge/paramiko-2.1.2-green.svg?style=plastic)](http://www.paramiko.org/)

-###截图：
+Jumpserver is a open source proxy server, developed by `Python` and `Django`, aim to help 
+companies to efficiently user, assets, authority and audit management

-首页
+Jumpserver是一款使用Python, Django开发的开源跳板机系统, 助力互联网企业高效 用户、资产、权限、审计 管理
+
+### Feature 功能
+  - Auth 统一认证
+  - CMDB 资产管理
+  - Perm 统一授权
+  - Audit 审计
+  - LDAP AUTH 支持LDAP认证
+  - Web terminal
+  - SSH Server
+
+
+### Environment 环境
+   * Python 3.6  
+   * Django 1.11
+
+### Install 安装 
+Using docker compose to setup it
+
+使用docker compose 安装，一键完成，docker compose 安装见 docker官方
+
+   $ docker-compose up
+
+### Usage 使用
+   1. Visit http://$HOST:8080 (访问 http://你的主机IP:8080 来访问 Jumpserver)
 
-![webterminal](https://github.com/ibuler/static/raw/master/jumpserver3/index.jpg)
+   2. Click left navigation visit Applications-Terminal and accept coco and luna register
+      (点击左侧 应用程序接受 Coco和Luna的注册)
+   
+   3. Click Assets-Admin user, Create admin user
+      (添加 管理用户)
+   
+   4. Click Assets-System user, Create system user
+      (添加 系统用户)
+      
+   5. Click Assets-Asset, Add a asset
+      (添加 资产)
+   
+   6. Click Perms-Asset permission, Add a perm rule
+      (添加授权规则，授权给admin)
+   
+   7. Connect ssh server coco (连接 ssh server coco)
+      
+      ssh -p2222 $USER@$Host
+ 
+   8. Visit web terminal server Luna, click server test connection
+      (访问 访问Luna，点击左侧服务器连接测试)
+      
+      http://$HOST:5000
+   
+   
+### Snapshot 截图

-WebTerminal:
-
-![webterminal](https://github.com/ibuler/static/raw/master/jumpserver3/webTerminal.gif)
-
-Web批量执行命令
-
-![WebExecCommand](https://github.com/ibuler/static/raw/master/jumpserver3/webExec.gif)
-
-录像回放
-
-![录像](https://github.com/ibuler/static/raw/master/jumpserver3/record.gif)
-
-跳转和批量命令
-
-![跳转](https://github.com/ibuler/static/raw/master/jumpserver3/connect.gif)
-
-命令统计
-
-![跳转](https://github.com/ibuler/static/raw/master/jumpserver3/command.jpg)
-
-### 文档
-
-* [访问wiki](https://github.com/jumpserver/jumpserver/wiki)
-* [概览](https://github.com/jumpserver/jumpserver/wiki/%E6%A6%82%E8%A7%88)
-* [名词解释](https://github.com/jumpserver/jumpserver/wiki/%E5%90%8D%E8%AF%8D%E8%A7%A3%E9%87%8A)
-* [常见问题](https://github.com/jumpserver/jumpserver/wiki/%E5%B8%B8%E8%A7%81%E9%97%AE%E9%A2%98)
-* 安装基于：[RedHat 的系统](https://github.com/jumpserver/jumpserver/wiki/%E5%9F%BA%E4%BA%8E-RedHat-%E7%9A%84%E7%B3%BB%E7%BB%9F)，[Debian 的系统](https://github.com/jumpserver/jumpserver/wiki/%E5%9F%BA%E4%BA%8E-Debian-%E7%9A%84%E7%B3%BB%E7%BB%9F)
-* [快速开始](https://github.com/jumpserver/jumpserver/wiki/%E5%BF%AB%E9%80%9F%E5%BC%80%E5%A7%8B)
-* [安装图解](https://github.com/jumpserver/jumpserver/wiki/%E5%AE%89%E8%A3%85%E5%9B%BE%E8%A7%A3)
-* [应用图解](https://github.com/jumpserver/jumpserver/wiki/%E5%BA%94%E7%94%A8%E5%9B%BE%E8%A7%A3)
-
-### 特点
-
-* 完全开源，GPL授权
-* Python编写，容易再次开发
-* 实现了跳板机基本功能，认证、授权、审计
-* 集成了Ansible，批量命令等
-* 支持WebTerminal
-* Bootstrap编写，界面美观
-* 自动收集硬件信息
-* 录像回放
-* 命令搜索
-* 实时监控
-* 批量上传下载
-
-### 其它
-
-[Jumpserver官网](http://www.jumpserver.org)
-
-[论坛](http://bbs.jumpserver.org)
-
-[demo站点](http://demo.jumpserver.org)
-
-交流群: 399218702
-
-### 团队
-
-![](https://github.com/ibuler/static/raw/master/jumpserver3/team.jpg)
+    https://github.com/jumpserver/jumpserver/issues/438


+### Demo
+
+demo使用了开发者模式，并发只能为1 
+
+- Jumpserver: [访问](http://demo.jumpserver.org:8080)  账号: admin 密码: admin
+
+- Luna: [访问](http://demo.jumpserver.org:5000) 同Jumpserver认证
+
+- Coco: ssh -p 2222 admin@demo.jumpserver.org 密码: admin
+
+### ROADMAP
+
+参见 https://github.com/jumpserver/jumpserver/milestone/2
+
+### Docs 开发者文档


+   * [Project structure 项目结构描述](https://github.com/jumpserver/jumpserver/blob/dev/docs/project_structure.md)
+   * [Code style Python代码规范](https://github.com/jumpserver/jumpserver/blob/dev/docs/python_style_guide.md)
+   * [Api style API设计规范](https://github.com/jumpserver/jumpserver/blob/dev/docs/api_style_guide.md)
+
+### Contributor 贡献者
+#### 0.4.0
+- ibuler <广宏伟>
+- 小彧 <李磊> Django资深开发者，为users模块贡献了很多代码
+- sofia <周小侠> 资深前端工程师, luna前端代码贡献者和现在维护者
+- liuz <刘正> 全栈工程师, 编写了luna大部分代码
+- jiaxiangkong <陈尚委> Jumpserver测试运营
+
+#### 0.3.2 
+- halcyon <王墉> DevOps 资深开发者, 0.3.2 核心开发者之一
+- yumaojun03 <喻茂峻> DevOps 资深开发者，jperm开发者，擅长Python, Go以及PAAS平台开发
+- kelianchun <柯连春> DevOps 资产开发者，fix了很多connect.py bug
+
+### 开发者群
+如果你为Jumpserver贡献过代码，请加一下群 （需要验证一下你的github id）
+
+群号: 489385245
+
+### License & Copyright
+Copyright (c) 2014-2017 Beijing Duizhan Tech, Inc., All rights reserved.
+
+Licensed under The GNU General Public License version 2 (GPLv2)  (the "License"); you may not use this file except in compliance with the License. You may obtain a copy of the License at
+
+https://www.gnu.org/licenses/gpl-2.0.html
+
+Unless required by applicable law or agreed to in writing, software distributed under the License is distributed on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the License for the specific language governing permissions and limitations under the License.
--- a/apps/init.py
+++ b/apps/init.py
@@ -0,0 +1,7 @@
+#!/usr/bin/env python
+# -*- coding: utf-8 -*-
+# 
+
+
+if __name__ == '__main__':
+    pass
--- a/apps/applications/init.py
+++ b/apps/applications/init.py
--- a/apps/applications/admin.py
+++ b/apps/applications/admin.py
--- a/apps/applications/api.py
+++ b/apps/applications/api.py
@@ -0,0 +1,103 @@
+# -*- coding: utf-8 -*-
+# 
+
+from collections import OrderedDict
+import copy
+from rest_framework.generics import ListCreateAPIView
+from rest_framework import viewsets
+from rest_framework.views import APIView, Response
+from rest_framework.permissions import AllowAny
+from django.shortcuts import get_object_or_404
+from rest_framework.decorators import api_view
+
+from .models import Terminal, TerminalHeatbeat
+from .serializers import TerminalSerializer, TerminalHeatbeatSerializer
+from .hands import IsSuperUserOrAppUser, IsAppUser, ProxyLog, \
+    IsSuperUserOrAppUserOrUserReadonly
+from common.utils import get_object_or_none
+
+
+class TerminalRegisterView(ListCreateAPIView):
+    queryset = Terminal.objects.all()
+    serializer_class = TerminalSerializer
+    permission_classes = (AllowAny,)
+
+    def create(self, request, *args, **kwargs):
+        name = request.data.get('name', '')
+        remote_addr = request.META.get('X-Real-IP') or \
+                      request.META.get('REMOTE_ADDR')
+        serializer = self.serializer_class(
+            data={'name': name, 'remote_addr': remote_addr})
+
+        if get_object_or_none(Terminal, name=name):
+            return Response({'msg': 'Already register, Need '
+                                    'administrator active it'}, status=200)
+
+        if serializer.is_valid():
+            terminal = serializer.save()
+            app_user, access_key = terminal.create_related_app_user()
+            data = OrderedDict()
+            data['terminal'] = copy.deepcopy(serializer.data)
+            data['user'] = app_user.to_json()
+            data['access_key_id'] = access_key.id
+            data['access_key_secret'] = access_key.secret
+            return Response(data, status=201)
+        else:
+            data = {'msg': 'Not valid', 'detail': ';'.join(serializer.errors)}
+            return Response(data, status=400)
+
+    def list(self, request, *args, **kwargs):
+        return Response('', status=404)
+
+
+class TerminalViewSet(viewsets.ModelViewSet):
+    queryset = Terminal.objects.all()
+    serializer_class = TerminalSerializer
+    permission_classes = (IsSuperUserOrAppUserOrUserReadonly,)
+
+    def create(self, request, *args, **kwargs):
+        return Response({'msg': 'Use register view except that'}, status=404)
+
+    # def destroy(self, request, *args, **kwargs):
+        # instance = self.get_object()
+        # if instance.user is not None:
+        #     instance.user.delete()
+        # return super(TerminalViewSet, self).destroy(request, *args, **kwargs)
+
+tasks = OrderedDict()
+# tasks = {1: [{'name': 'kill_proxy', 'proxy_log_id': 23}]}
+
+
+class TerminalHeatbeatViewSet(viewsets.ModelViewSet):
+    queryset = TerminalHeatbeat.objects.all()
+    serializer_class = TerminalHeatbeatSerializer
+    permission_classes = (IsAppUser,)
+
+    def create(self, request, *args, **kwargs):
+        terminal = request.user.terminal
+        TerminalHeatbeat.objects.create(terminal=terminal)
+        task = tasks.get(terminal.name)
+        tasks[terminal.name] = []
+        return Response({'msg': 'Success',
+                         'tasks': task},
+                        status=201)
+
+
+class TerminateConnectionView(APIView):
+    def post(self, request, *args, **kwargs):
+        if isinstance(request.data, dict):
+            data = [request.data]
+        else:
+            data = request.data
+        for d in data:
+            proxy_log_id = d.get('proxy_log_id')
+            proxy_log = get_object_or_404(ProxyLog, id=proxy_log_id)
+            terminal_id = proxy_log.terminal
+            if terminal_id in tasks:
+                tasks[terminal_id].append({'name': 'kill_proxy',
+                                           'proxy_log_id': proxy_log_id})
+            else:
+                tasks[terminal_id] = [{'name': 'kill_proxy',
+                                       'proxy_log_id': proxy_log_id}]
+
+        return Response({'msg': 'get it'})
--- a/apps/applications/apps.py
+++ b/apps/applications/apps.py
@@ -0,0 +1,7 @@
+from __future__ import unicode_literals
+
+from django.apps import AppConfig
+
+
+class ApplicationsConfig(AppConfig):
+    name = 'applications'
--- a/apps/applications/forms.py
+++ b/apps/applications/forms.py
@@ -0,0 +1,18 @@
+# ~*~ coding: utf-8 ~*~
+#
+
+from django import forms
+
+from .models import Terminal
+
+
+class TerminalForm(forms.ModelForm):
+    class Meta:
+        model = Terminal
+        fields = ['name', 'remote_addr', 'type', 'url', 'comment']
+        help_texts = {
+            'url': 'Example: ssh://192.168.1.1:22 or http://jms.jumpserver.org, that user login'
+        }
+        widgets = {
+            'name': forms.TextInput(attrs={'readonly': 'readonly'})
+        }
--- a/apps/applications/hands.py
+++ b/apps/applications/hands.py
@@ -0,0 +1,8 @@
+# -*- coding: utf-8 -*-
+# 
+
+from users.models import User
+from users.permissions import IsSuperUserOrAppUser, IsAppUser, \
+    IsSuperUserOrAppUserOrUserReadonly
+from audits.models import ProxyLog
+from users.utils import AdminUserRequiredMixin
--- a/apps/applications/migrations/init.py
+++ b/apps/applications/migrations/init.py
--- a/apps/applications/models.py
+++ b/apps/applications/models.py
@@ -0,0 +1,62 @@
+from __future__ import unicode_literals
+
+from django.db import models
+from django.utils.translation import ugettext_lazy as _
+
+from users.models import User
+
+
+class Terminal(models.Model):
+    TYPE_CHOICES = (
+        ('SSH', 'SSH Terminal'),
+        ('Web', 'Web Terminal')
+    )
+    name = models.CharField(max_length=30, unique=True, verbose_name=_('Name'))
+    remote_addr = models.GenericIPAddressField(verbose_name=_('Remote address'), blank=True, null=True)
+    type = models.CharField(choices=TYPE_CHOICES, max_length=3, blank=True, verbose_name=_('Terminal type'))
+    user = models.OneToOneField(User, related_name='terminal', verbose_name='Application user',
+                                null=True, on_delete=models.CASCADE)
+    url = models.CharField(max_length=100, blank=True, verbose_name=_('URL to login'))
+    is_accepted = models.BooleanField(default=False, verbose_name='Is Accepted')
+    date_created = models.DateTimeField(auto_now_add=True)
+    comment = models.TextField(blank=True, verbose_name=_('Comment'))
+
+    @property
+    def is_active(self):
+        if self.user and self.user.is_active:
+            return True
+        return False
+
+    @is_active.setter
+    def is_active(self, active):
+        if self.user:
+            self.user.is_active = active
+            self.user.save()
+
+    def create_related_app_user(self):
+        user, access_key = User.create_app_user(name=self.name, comment=self.comment)
+        self.user = user
+        self.save()
+        return user, access_key
+
+    def delete(self, using=None, keep_parents=False):
+        if self.user:
+            self.user.delete()
+        return super(Terminal, self).delete(using=using, keep_parents=keep_parents)
+
+    def __unicode__(self):
+        active = 'Active' if self.user and self.user.is_active else 'Disabled'
+        return '%s: %s' % (self.name, active)
+
+    __str__ = __unicode__
+
+    class Meta:
+        ordering = ('is_accepted',)
+
+
+class TerminalHeatbeat(models.Model):
+    terminal = models.ForeignKey(Terminal, on_delete=models.CASCADE)
+    date_created = models.DateTimeField(auto_now_add=True)
+
+    class Meta:
+        db_table = 'terminal_heatbeat'
--- a/apps/applications/serializers.py
+++ b/apps/applications/serializers.py
@@ -0,0 +1,41 @@
+# -*- coding: utf-8 -*-
+#
+
+from django.utils import timezone
+from rest_framework import serializers
+
+from .models import Terminal, TerminalHeatbeat
+from .hands import ProxyLog
+
+
+class TerminalSerializer(serializers.ModelSerializer):
+    proxy_online = serializers.SerializerMethodField()
+    is_alive = serializers.SerializerMethodField()
+
+    class Meta:
+        model = Terminal
+        fields = ['id', 'name', 'remote_addr', 'type', 'url', 'comment',
+                  'is_accepted', 'is_active', 'get_type_display',
+                  'proxy_online', 'is_alive']
+
+    @staticmethod
+    def get_proxy_online(obj):
+        return ProxyLog.objects.filter(terminal=obj.name, is_finished=False).count()
+
+    @staticmethod
+    def get_is_alive(obj):
+        log = obj.terminalheatbeat_set.last()
+        if log and timezone.now() - log.date_created < timezone.timedelta(seconds=600):
+            return True
+        else:
+            return False
+
+
+class TerminalHeatbeatSerializer(serializers.ModelSerializer):
+    date_start = serializers.DateTimeField
+    class Meta:
+        model = TerminalHeatbeat
+
+
+if __name__ == '__main__':
+    pass
--- a/apps/applications/tasks.py
+++ b/apps/applications/tasks.py
@@ -0,0 +1,5 @@
+#!/usr/bin/env python
+# -*- coding: utf-8 -*-
+#
+
+
--- a/apps/applications/templates/applications/terminal_detail.html
+++ b/apps/applications/templates/applications/terminal_detail.html
@@ -0,0 +1,77 @@
+{% extends 'base.html' %}
+{% load static %}
+{% load i18n %}
+
+{% block content %}
+    <div class="wrapper wrapper-content animated fadeInRight">
+        <div class="row">
+            <div class="col-sm-12">
+                <div class="ibox float-e-margins">
+                    <div class="panel-options">
+                        <ul class="nav nav-tabs">
+                            <li class="active">
+                                <a href="" class="text-center"><i class="fa fa-laptop"></i> {% trans 'Terminal detail' %} </a>
+                            </li>
+                            <li class="pull-right">
+                                <a class="btn btn-outline btn-default" href="{% url 'applications:terminal-update' pk=terminal.id %}"><i class="fa fa-edit"></i>Update</a>
+                            </li>
+                        </ul>
+                    </div>
+                    <div class="tab-content">
+                        <div class="col-sm-7" style="padding-left: 0">
+                            <div class="ibox float-e-margins">
+                                <div class="ibox-title">
+                                    <span class="label"><b>{{ terminal.name }}</b></span>
+                                    <div class="ibox-tools">
+                                        <a class="collapse-link">
+                                            <i class="fa fa-chevron-up"></i>
+                                        </a>
+                                        <a class="dropdown-toggle" data-toggle="dropdown" href="#">
+                                            <i class="fa fa-wrench"></i>
+                                        </a>
+                                        <ul class="dropdown-menu dropdown-user">
+                                        </ul>
+                                        <a class="close-link">
+                                            <i class="fa fa-times"></i>
+                                        </a>
+                                    </div>
+                                </div>
+                                <div class="ibox-content">
+                                    <table class="table">
+                                        <tbody>
+                                        <tr class="no-borders-tr">
+                                            <td width="20%">{% trans 'Name' %}:</td>
+                                            <td><b>{{ terminal.name }}</b></td>
+                                        </tr>
+                                        <tr>
+                                            <td>{% trans 'Remote address' %}:</td>
+                                            <td><b>{{ terminal.remote_addr }}</b></td>
+                                        </tr>
+                                        <tr>
+                                            <td>{% trans 'URL to login' %}:</td>
+                                            <td><b>{{ terminal.url }}</b></td>
+                                        </tr>
+                                        <tr>
+                                            <td>{% trans 'Terminal type' %}:</td>
+                                            <td><b>{{ terminal.get_type_display }}</b></td>
+                                        </tr>
+                                        <tr>
+                                            <td>{% trans 'Date created' %}:</td>
+                                            <td><b>{{ terminal.date_created }}</b></td>
+                                        </tr>
+                                        <tr>
+                                            <td>{% trans 'Comment' %}:</td>
+                                            <td><b>{{ asset.comment }}</b></td>
+                                        </tr>
+                                        </tbody>
+                                    </table>
+                                </div>
+                            </div>
+                        </div>
+                    </div>
+                </div>
+            </div>
+        </div>
+    </div>
+{% endblock %}
+
--- a/apps/applications/templates/applications/terminal_list.html
+++ b/apps/applications/templates/applications/terminal_list.html
@@ -0,0 +1,149 @@
+{% extends '_base_list.html' %}
+{% load i18n static %}
+{% block custom_head_css_js %}
+{{ block.super }}
+
+<style>
+    div.dataTables_wrapper div.dataTables_filter,
+    .dataTables_length {
+        float: right !important;
+    }
+    div.dataTables_wrapper div.dataTables_filter {
+        margin-left: 15px;
+    }
+
+    #modal .modal-body { max-height: 200px; }
+</style>
+{% endblock %}
+{% block table_search %}{% endblock %}
+{% block table_container %}
+{#<div class="uc pull-left m-l-5 m-r-5"><a href="{% url "users:user-create" %}" class="btn btn-sm btn-primary"> {% trans "Create user" %} </a></div>#}
+<table class="table table-striped table-bordered table-hover " id="terminal_list_table" >
+    <thead>
+        <tr>
+            <th class="text-center">
+                <div class="checkbox checkbox-default">
+                    <input type="checkbox" class="ipt_check_all">
+                </div>
+            </th>
+            <th class="text-center">{% trans 'Name' %}</th>
+            <th class="text-center">{% trans 'IP' %}</th>
+            <th class="text-center">{% trans 'Type' %}</th>
+            <th class="text-center">{% trans 'Session online' %}</th>
+            <th class="text-center">{% trans 'Active' %}</th>
+            <th class="text-center">{% trans 'Alive' %}</th>
+            <th class="text-center">{% trans 'Action' %}</th>
+        </tr>
+    </thead>
+    <tbody>
+    </tbody>
+</table>
+{% include 'applications/terminal_modal_accept.html' %}
+
+{% endblock %}
+{% block custom_foot_js %}
+<script src="{% static 'js/jquery.form.min.js' %}"></script>
+<script>
+$(document).ready(function(){
+    var options = {
+        ele: $('#terminal_list_table'),
+        buttons: [],
+        columnDefs: [
+            {targets: 1, createdCell: function (td, cellData, rowData) {
+                var detail_btn = '<a href="{% url "applications:terminal-detail" pk=99991937 %}">' + cellData + '</a>';
+                $(td).html(detail_btn.replace('99991937', rowData.id));
+             }},
+            {targets: 5, createdCell: function (td, cellData) {
+                if (!cellData) {
+                    $(td).html('<i class="fa fa-times text-danger"></i>')
+                } else {
+                    $(td).html('<i class="fa fa-check text-navy"></i>')
+                }
+             }},
+            {targets: 6, createdCell: function (td, cellData) {
+                if (!cellData) {
+                    $(td).html('<i class="fa fa-circle text-danger"></i>')
+                } else {
+                    $(td).html('<i class="fa fa-circle text-navy"></i>')
+                }
+            }},
+            {targets: 7, createdCell: function (td, cellData, rowData) {
+                var update_btn = '<a href="{% url "applications:terminal-update" pk=99991937 %}" class="btn btn-xs btn-info">{% trans "Update" %}</a>'
+                        .replace('99991937', cellData);
+                var delete_btn = '<a class="btn btn-xs btn-danger m-l-xs btn-del" data-id="99991937" data-name="99991938">{% trans "Delete" %}</a>'
+                        .replace('99991937', cellData)
+                        .replace('99991938', rowData.name);
+                var accept_btn = '<a class="btn btn-xs btn-primary btn-accept" data-id="99991937">{% trans "Accept" %}</a> '
+                        .replace('99991937', cellData);
+                var reject_btn = '<a class="btn btn-xs btn-danger m-l-xs btn-del" data-id="99991937" data-name="99991938">{% trans "Reject" %}</a>'
+                        .replace('99991937', cellData)
+                        .replace('99991938', rowData.name);
+                var connect_btn = '<a href="{% url "applications:terminal-connect" pk=99991937 %}"" class="btn btn-xs btn-warning btn-connect" >{% trans "Connect" %}</a> '
+                        .replace('99991937', cellData);
+                if (rowData.is_accepted) {
+                    {% if user.is_superuser %}
+                    $(td).html(connect_btn + update_btn + delete_btn);
+                    {% else %}
+                    $(td).html(connect_btn);
+                    {% endif %}
+                } else {
+                    {% if user.is_superuser %}
+                    $(td).html(accept_btn + reject_btn);
+                    {% endif %}
+                }
+             }}
+        ],
+        ajax_url: '{% url "api-applications:terminal-list" %}',
+        columns: [{data: function(){return ""}}, {data: "name" }, {data: "remote_addr" }, {data: "get_type_display" },
+                  {data: "proxy_online"}, {data: "is_active" }, {data: 'is_active'}, {data: "id"}],
+        op_html: $('#actions').html()
+    };
+    jumpserver.initDataTable(options);
+
+    $('#btn_terminal_accept').click(function () {
+        var $form = $('#form_terminal_accept');
+        function success(data, textStatus, jqXHR) {
+            if (data.success === true) {
+                window.location.reload()
+            } else {
+                $('#modal-error').html(data.msg).css('display', 'block');
+            }
+        }
+        $form.ajaxSubmit({success: success});
+    })
+
+}).on('click', '.btn-del', function(){
+    var $this = $(this);
+    var id = $this.data('id');
+    var name = $(this).data('name');
+    var the_url = '{% url "api-applications:terminal-detail" pk=99991937 %}'.replace('99991937', id);
+    objectDelete($this, name, the_url)
+
+}).on('click', '.btn-accept', function () {
+    var $this = $(this);
+    var terminal_id = $this.data('id');
+    var the_url = "{% url 'api-applications:terminal-detail' pk=99991937 %}".replace('99991937', terminal_id);
+    var post_url = $('#form_terminal_accept').attr('action').replace('99991937', terminal_id);
+    console.log(post_url);
+    $.ajax({
+        url: the_url,
+        method: 'GET',
+        success: function (data) {
+            $('#id_name').val(data.name);
+            $('#id_remote_addr').val(data.remote_addr);
+            $('#id_type').val(data.type);
+            $('#id_url').val(data.url);
+            $('#id_comment').val(data.comment);
+            $('#form_terminal_accept').attr('action', post_url)
+        }
+    });
+    $('#modal_terminal_accept').modal({
+        show: true
+    });
+}).on('click', '.btn-connect', function () {
+    var $this = $(this);
+    var id = $this.data('id');
+    console.log(id)
+})
+</script>
+{% endblock %}
--- a/apps/applications/templates/applications/terminal_modal_accept.html
+++ b/apps/applications/templates/applications/terminal_modal_accept.html
@@ -0,0 +1,19 @@
+{% extends '_modal.html' %}
+{% load i18n %}
+{% block modal_id %}modal_terminal_accept{% endblock %}
+{% block modal_class %}modal-lg{% endblock %}
+{% block modal_title%}{% trans "Accept terminal registration" %}{% endblock %}
+{% block modal_body %}
+{% load bootstrap3 %}
+<form action="{% url 'applications:terminal-modal-accept' pk="99991937" %}" method="post" class="form-horizontal" id="form_terminal_accept" enctype="multipart/form-data">
+    {% csrf_token %}
+    <p class="alert alert-danger" id="modal-error" style="display: none"></p>
+    {% bootstrap_field form.name layout="horizontal" %}
+    {% bootstrap_field form.remote_addr layout="horizontal" %}
+    {% bootstrap_field form.type layout="horizontal" %}
+    {% bootstrap_field form.url layout="horizontal" %}
+    {% bootstrap_field form.comment layout="horizontal" %}
+</form>
+
+{% endblock %}
+{% block modal_confirm_id %}btn_terminal_accept{% endblock %}
--- a/apps/applications/templates/applications/terminal_modal_test.html
+++ b/apps/applications/templates/applications/terminal_modal_test.html
@@ -0,0 +1,5 @@
+<form action="" method="post">
+    {% csrf_token %}
+    {{ form }}
+    <input type="submit" value="Submit">
+</form>
--- a/apps/applications/templates/applications/terminal_update.html
+++ b/apps/applications/templates/applications/terminal_update.html
@@ -0,0 +1,72 @@
+{% extends 'base.html' %}
+{% load i18n %}
+{% load static %}
+{% load bootstrap3 %}
+{% block custom_head_css_js %}
+    <link href="{% static "css/plugins/select2/select2.min.css" %}" rel="stylesheet">
+    <script src="{% static "js/plugins/select2/select2.full.min.js" %}"></script>
+    <link href="{% static "css/plugins/datepicker/datepicker3.css" %}" rel="stylesheet">
+{% endblock %}
+
+{% block content %}
+    <div class="wrapper wrapper-content animated fadeInRight">
+        <div class="row">
+            <div class="col-sm-12">
+                <div class="ibox float-e-margins">
+                    <div class="ibox-title">
+                        <h5>{{ action }}</h5>
+                        <div class="ibox-tools">
+                            <a class="collapse-link">
+                                <i class="fa fa-chevron-up"></i>
+                            </a>
+                            <a class="dropdown-toggle" data-toggle="dropdown" href="#">
+                                <i class="fa fa-wrench"></i>
+                            </a>
+                            <a class="close-link">
+                                <i class="fa fa-times"></i>
+                            </a>
+                        </div>
+                    </div>
+                    <div class="ibox-content">
+                        <form method="post" class="form-horizontal" action="" enctype="multipart/form-data">
+                            {% csrf_token %}
+                            <h3>{% trans 'Info' %}</h3>
+                            {% bootstrap_field form.name layout="horizontal" %}
+                            {% bootstrap_field form.remote_addr layout="horizontal" %}
+                            {% bootstrap_field form.type layout="horizontal" %}
+                            {% bootstrap_field form.url layout="horizontal" %}
+
+                            <div class="hr-line-dashed"></div>
+                            <h3>{% trans 'Other' %}</h3>
+                            {% bootstrap_field form.comment layout="horizontal" %}
+                            <div class="hr-line-dashed"></div>
+                            <div class="form-group">
+                                <div class="col-sm-4 col-sm-offset-2">
+                                    <button class="btn btn-white" type="reset">{% trans 'Reset' %}</button>
+                                    <button id="submit_button" class="btn btn-primary" type="submit">{% trans 'Submit' %}</button>
+                                </div>
+                            </div>
+                        </form>
+                    </div>
+                </div>
+            </div>
+        </div>
+    </div>
+{% endblock %}
+{% block custom_foot_js %}
+    <script src="{% static 'js/plugins/datepicker/bootstrap-datepicker.js' %}"></script>
+    <script>
+        $(document).ready(function () {
+            $('.select2').select2();
+
+            $('.input-group.date').datepicker({
+                format: "yyyy-mm-dd",
+                todayBtn: "linked",
+                keyboardNavigation: false,
+                forceParse: false,
+                calendarWeeks: true,
+                autoclose: true
+            });
+        })
+    </script>
+{% endblock %}
--- a/apps/applications/tests.py
+++ b/apps/applications/tests.py
--- a/apps/applications/urls/init.py
+++ b/apps/applications/urls/init.py
@@ -0,0 +1 @@
+
--- a/apps/applications/urls/api_urls.py
+++ b/apps/applications/urls/api_urls.py
@@ -0,0 +1,24 @@
+#!/usr/bin/env python
+# -*- coding: utf-8 -*-
+#
+
+from django.conf.urls import url
+from rest_framework import routers
+
+from .. import api
+
+app_name = 'applications'
+
+router = routers.DefaultRouter()
+router.register(r'v1/terminal/heatbeat', api.TerminalHeatbeatViewSet, 'terminal-heatbeat')
+router.register(r'v1/terminal', api.TerminalViewSet, 'terminal')
+
+urlpatterns = [
+    url(r'^v1/terminal/register/$', api.TerminalRegisterView.as_view(),
+        name='terminal-register'),
+    url(r'^v1/terminate/connection/$', api.TerminateConnectionView.as_view(),
+        name='terminate-connection')
+    # url(r'^v1/terminal/heatbeat/$', api.TestHeatbeat.as_view())
+]
+
+urlpatterns += router.urls
--- a/apps/applications/urls/views_urls.py
+++ b/apps/applications/urls/views_urls.py
@@ -0,0 +1,21 @@
+#!/usr/bin/env python
+# -*- coding: utf-8 -*-
+#
+
+from django.conf.urls import url
+
+from .. import views
+
+app_name = 'applications'
+
+urlpatterns = [
+    url(r'^terminal/$', views.TerminalListView.as_view(), name='terminal-list'),
+    url(r'^terminal/(?P<pk>\d+)/$', views.TerminalDetailView.as_view(),
+        name='terminal-detail'),
+    url(r'^terminal/(?P<pk>\d+)/connect/$', views.TerminalConnectView.as_view(),
+        name='terminal-connect'),
+    url(r'^terminal/(?P<pk>\d+)/update$', views.TerminalUpdateView.as_view(),
+        name='terminal-update'),
+    url(r'^terminal/(?P<pk>\d+)/modal/accept$', views.TerminalModelAccept.as_view(),
+        name='terminal-modal-accept'),
+]
--- a/apps/applications/views.py
+++ b/apps/applications/views.py
@@ -0,0 +1,115 @@
+# ~*~ coding: utf-8 ~*~
+#
+
+from django.views.generic import ListView, UpdateView, DeleteView, \
+    DetailView, TemplateView
+from django.contrib.auth.mixins import LoginRequiredMixin
+from django.utils.translation import ugettext as _
+from django.urls import reverse_lazy, reverse
+
+from common.mixins import JSONResponseMixin
+from .models import Terminal
+from .forms import TerminalForm
+from .hands import AdminUserRequiredMixin
+
+
+class TerminalListView(LoginRequiredMixin, ListView):
+    model = Terminal
+    template_name = 'applications/terminal_list.html'
+    form_class = TerminalForm
+
+    def get_context_data(self, **kwargs):
+        context = super(TerminalListView, self).get_context_data(**kwargs)
+        context.update({
+            'app': _('Terminal'),
+            'action': _('Terminal list'),
+            'form': self.form_class()
+        })
+        return context
+
+
+class TerminalUpdateView(AdminUserRequiredMixin, UpdateView):
+    model = Terminal
+    form_class = TerminalForm
+    template_name = 'applications/terminal_update.html'
+    success_url = reverse_lazy('applications:terminal-list')
+
+    def get_context_data(self, **kwargs):
+        context = super(TerminalUpdateView, self).get_context_data(**kwargs)
+        context.update({'app': _('Applications'), 'action': _('Update terminal')})
+        return context
+
+
+class TerminalDetailView(LoginRequiredMixin, DetailView):
+    model = Terminal
+    template_name = 'applications/terminal_detail.html'
+    context_object_name = 'terminal'
+
+    def get_context_data(self, **kwargs):
+        context = super(TerminalDetailView, self).get_context_data(**kwargs)
+        context.update({
+            'app': _('Applications'),
+            'action': _('Terminal detail')
+        })
+        return context
+
+
+class TerminalDeleteView(AdminUserRequiredMixin, DeleteView):
+    model = Terminal
+    template_name = 'assets/delete_confirm.html'
+    success_url = reverse_lazy('applications:applications-list')
+
+
+class TerminalModelAccept(AdminUserRequiredMixin, JSONResponseMixin, UpdateView):
+    model = Terminal
+    form_class = TerminalForm
+    template_name = 'applications/terminal_modal_test.html'
+
+    def post(self, request, *args, **kwargs):
+        print(request.POST)
+        return super(TerminalModelAccept, self).post(request, *args, **kwargs)
+
+    def form_valid(self, form):
+        terminal = form.save()
+        terminal.is_accepted = True
+        terminal.is_active = True
+        terminal.save()
+        data = {
+            'success': True,
+            'msg': 'success'
+        }
+        return self.render_json_response(data)
+
+    def form_invalid(self, form):
+        print('form.data')
+        data = {
+            'success': False,
+            'msg': str(form.errors),
+        }
+        return self.render_json_response(data)
+
+
+class TerminalConnectView(LoginRequiredMixin, DetailView):
+    template_name = 'flash_message_standalone.html'
+    model = Terminal
+
+    def get_context_data(self, **kwargs):
+        if self.object.type == 'Web':
+            context = {
+                'title': _('Redirect to web terminal'),
+                'messages': _('Redirect to web terminal') + self.object.url,
+                'auto_redirect': True,
+                'interval': 3,
+                'redirect_url': self.object.url
+            }
+        else:
+            context = {
+                'title': _('Connect ssh terminal'),
+                'messages': _('You should use your ssh client tools '
+                              'connect terminal: {} <br /> <br />'
+                              '{}'.format(self.object.name, self.object.url)),
+                'redirect_url': reverse('applications:terminal-list')
+            }
+
+        kwargs.update(context)
+        return super(TerminalConnectView, self).get_context_data(**kwargs)
--- a/apps/assets/init.py
+++ b/apps/assets/init.py
--- a/apps/assets/api.py
+++ b/apps/assets/api.py
@@ -0,0 +1,220 @@
+# ~*~ coding: utf-8 ~*~
+
+# Copyright (C) 2014-2017 Beijing DuiZhan Technology Co.,Ltd. All Rights Reserved.
+#
+# Licensed under the GNU General Public License v2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#    http://www.gnu.org/licenses/gpl-2.0.html
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+
+from rest_framework import generics
+from rest_framework.response import Response
+from rest_framework_bulk import BulkModelViewSet
+from rest_framework_bulk import ListBulkCreateUpdateDestroyAPIView
+from django.shortcuts import get_object_or_404
+
+from common.mixins import IDInFilterMixin
+from common.utils import get_object_or_none
+from .hands import IsSuperUser, IsAppUser, IsValidUser, \
+    get_user_granted_assets, push_users
+from .models import AssetGroup, Asset, IDC, SystemUser, AdminUser
+from . import serializers
+from .tasks import update_assets_hardware_info
+from .utils import test_admin_user_connective_manual
+
+
+class AssetViewSet(IDInFilterMixin, BulkModelViewSet):
+    """API endpoint that allows Asset to be viewed or edited."""
+    queryset = Asset.objects.all()
+    serializer_class = serializers.AssetSerializer
+    permission_classes = (IsValidUser,)
+
+    def get_queryset(self):
+        if self.request.user.is_superuser:
+            queryset = super(AssetViewSet, self).get_queryset()
+        else:
+            queryset = get_user_granted_assets(self.request.user)
+        idc_id = self.request.query_params.get('idc_id', '')
+        system_users_id = self.request.query_params.get('system_user_id', '')
+        asset_group_id = self.request.query_params.get('asset_group_id', '')
+        admin_user_id = self.request.query_params.get('admin_user_id', '')
+        if idc_id:
+            queryset = queryset.filter(idc__id=idc_id)
+        if system_users_id:
+            queryset = queryset.filter(system_users__id=system_users_id)
+        if admin_user_id:
+            queryset = queryset.filter(admin_user__id=admin_user_id)
+        if asset_group_id:
+            queryset = queryset.filter(groups__id=asset_group_id)
+        return queryset
+
+
+class AssetGroupViewSet(IDInFilterMixin, BulkModelViewSet):
+    """Asset group api set, for add,delete,update,list,retrieve resource"""
+    queryset = AssetGroup.objects.all()
+    serializer_class = serializers.AssetGroupSerializer
+    permission_classes = (IsSuperUser,)
+
+
+class AssetUpdateGroupApi(generics.RetrieveUpdateAPIView):
+    """Asset update it's group api"""
+    queryset = Asset.objects.all()
+    serializer_class = serializers.AssetUpdateGroupSerializer
+    permission_classes = (IsSuperUser,)
+
+
+class AssetGroupUpdateApi(generics.RetrieveUpdateAPIView):
+    """Asset group, update it's asset member"""
+    queryset = AssetGroup.objects.all()
+    serializer_class = serializers.AssetGroupUpdateSerializer
+    permission_classes = (IsSuperUser,)
+
+
+class AssetGroupUpdateSystemUserApi(generics.RetrieveUpdateAPIView):
+    """Asset group push system user"""
+    queryset = AssetGroup.objects.all()
+    serializer_class = serializers.AssetGroupUpdateSystemUserSerializer
+    permission_classes = (IsSuperUser,)
+
+
+class IDCUpdateAssetsApi(generics.RetrieveUpdateAPIView):
+    """IDC update asset member"""
+    queryset = IDC.objects.all()
+    serializer_class = serializers.IDCUpdateAssetsSerializer
+    permission_classes = (IsSuperUser,)
+
+
+class IDCViewSet(IDInFilterMixin, BulkModelViewSet):
+    """IDC api set, for add,delete,update,list,retrieve resource"""
+    queryset = IDC.objects.all()
+    serializer_class = serializers.IDCSerializer
+    permission_classes = (IsSuperUser,)
+
+
+class AdminUserViewSet(IDInFilterMixin, BulkModelViewSet):
+    """Admin user api set, for add,delete,update,list,retrieve resource"""
+    queryset = AdminUser.objects.all()
+    serializer_class = serializers.AdminUserSerializer
+    permission_classes = (IsSuperUser,)
+
+
+class SystemUserViewSet(IDInFilterMixin, BulkModelViewSet):
+    """System user api set, for add,delete,update,list,retrieve resource"""
+    queryset = SystemUser.objects.all()
+    serializer_class = serializers.SystemUserSerializer
+    permission_classes = (IsSuperUser,)
+
+
+class SystemUserUpdateApi(generics.RetrieveUpdateAPIView):
+    """Asset update it's system user
+
+    when update then push system user to asset.
+    """
+    queryset = Asset.objects.all()
+    serializer_class = serializers.AssetUpdateSystemUserSerializer
+    permission_classes = (IsSuperUser,)
+
+    def patch(self, request, *args, **kwargs):
+        asset = self.get_object()
+        old_system_users = set(asset.system_users.all())
+        response = super(SystemUserUpdateApi, self).patch(request, *args, **kwargs)
+        system_users_new = set(asset.system_users.all())
+        system_users = system_users_new - old_system_users
+        system_users = [system_user._to_secret_json() for system_user in system_users]
+        push_users.delay([asset._to_secret_json()], system_users)
+        return response
+
+
+class SystemUserUpdateAssetsApi(generics.RetrieveUpdateAPIView):
+    """System user update it's assets"""
+    queryset = SystemUser.objects.all()
+    serializer_class = serializers.SystemUserUpdateAssetsSerializer
+    permission_classes = (IsSuperUser,)
+
+
+class SystemUserUpdateAssetGroupApi(generics.RetrieveUpdateAPIView):
+    """System user update asset group"""
+    queryset = SystemUser.objects.all()
+    serializer_class = serializers.SystemUserUpdateAssetGroupSerializer
+    permission_classes = (IsSuperUser,)
+
+
+class AssetListUpdateApi(IDInFilterMixin, ListBulkCreateUpdateDestroyAPIView):
+    """Asset bulk update api"""
+    queryset = Asset.objects.all()
+    serializer_class = serializers.AssetSerializer
+    permission_classes = (IsSuperUser,)
+
+
+class SystemUserAuthInfoApi(generics.RetrieveAPIView):
+    """Get system user auth info"""
+    queryset = SystemUser.objects.all()
+    permission_classes = (IsAppUser,)
+
+    def retrieve(self, request, *args, **kwargs):
+        system_user = self.get_object()
+        data = {
+            'id': system_user.id,
+            'name': system_user.name,
+            'username': system_user.username,
+            'password': system_user.password,
+            'private_key': system_user.private_key,
+            'auth_method': system_user.auth_method,
+        }
+        return Response(data)
+
+
+class AssetRefreshHardwareView(generics.RetrieveAPIView):
+    """Refresh asset hardware info"""
+    queryset = Asset.objects.all()
+    serializer_class = serializers.AssetSerializer
+    permission_classes = (IsSuperUser,)
+
+    def retrieve(self, request, *args, **kwargs):
+        asset_id = kwargs.get('pk')
+        asset = get_object_or_404(Asset, pk=asset_id)
+        summary = update_assets_hardware_info([asset])
+        if len(summary['failed']) == 0:
+            return super(AssetRefreshHardwareView, self).retrieve(request, *args, **kwargs)
+        else:
+            return Response('', status=502)
+
+
+class AssetAdminUserTestView(AssetRefreshHardwareView):
+    """Test asset admin user connectivity"""
+    queryset = Asset.objects.all()
+    permission_classes = (IsSuperUser,)
+
+    def retrieve(self, request, *args, **kwargs):
+        asset_id = kwargs.get('pk')
+        asset = get_object_or_404(Asset, pk=asset_id)
+        result = test_admin_user_connective_manual([asset])
+        if result:
+            return Response('1')
+        else:
+            return Response('0', status=502)
+
+
+class AssetGroupPushSystemUserView(generics.UpdateAPIView):
+    """Asset group push system user api"""
+    queryset = AssetGroup.objects.all()
+    permission_classes = (IsSuperUser,)
+    serializer_class = serializers.AssetSerializer
+
+    def patch(self, request, *args, **kwargs):
+        asset_group = self.get_object()
+        assets = asset_group.assets.all()
+        system_user_id = self.request.data['system_user']
+        system_user = get_object_or_none(SystemUser, id=system_user_id)
+        if not assets or not system_user:
+            return Response('Invalid system user id or asset group id', status=404)
+        task = push_users.delay([asset._to_secret_json() for asset in assets],
+                                system_user._to_secret_json())
+        return Response(task.id)
--- a/apps/assets/apps.py
+++ b/apps/assets/apps.py
@@ -0,0 +1,7 @@
+from __future__ import unicode_literals
+
+from django.apps import AppConfig
+
+
+class AssetsConfig(AppConfig):
+    name = 'assets'
--- a/apps/assets/forms.py
+++ b/apps/assets/forms.py
@@ -0,0 +1,361 @@
+# coding:utf-8
+from django import forms
+from django.utils.translation import gettext_lazy as _
+
+from .models import IDC, Asset, AssetGroup, AdminUser, SystemUser
+from common.utils import validate_ssh_private_key, ssh_pubkey_gen, ssh_key_gen, get_logger
+
+
+logger = get_logger(__file__)
+
+
+class AssetCreateForm(forms.ModelForm):
+    class Meta:
+        model = Asset
+        fields = [
+            'hostname', 'ip', 'public_ip', 'port', 'type', 'comment',
+            'admin_user', 'idc', 'groups', 'status', 'env', 'is_active'
+        ]
+        widgets = {
+            'groups': forms.SelectMultiple(
+                attrs={'class': 'select2',
+                       'data-placeholder': _('Select asset groups')}),
+            'admin_user': forms.Select(
+                attrs={'class': 'select2',
+                       'data-placeholder': _('Select asset admin user')}),
+        }
+        help_texts = {
+            'hostname': '* required',
+            'ip': '* required',
+            'system_users': _('System user will be granted for user to login '
+                              'assets (using ansible create automatic)'),
+            'admin_user': _('Admin user should be exist on asset already, '
+                            'And have sudo ALL permission'),
+        }
+
+    def clean_admin_user(self):
+        if not self.cleaned_data['admin_user']:
+            raise forms.ValidationError(_('Select admin user'))
+        return self.cleaned_data['admin_user']
+
+
+class AssetUpdateForm(forms.ModelForm):
+    class Meta:
+        model = Asset
+        fields = [
+            'hostname', 'ip', 'port', 'groups', 'admin_user', 'idc', 'is_active',
+            'type', 'env', 'status', 'public_ip', 'remote_card_ip', 'cabinet_no',
+            'cabinet_pos', 'number', 'comment'
+        ]
+        widgets = {
+            'groups': forms.SelectMultiple(
+                attrs={'class': 'select2',
+                       'data-placeholder': _('Select asset groups')}),
+            'admin_user': forms.Select(
+                attrs={'class': 'select2',
+                       'data-placeholder': _('Select asset admin user')}),
+        }
+        help_texts = {
+            'hostname': '* required',
+            'ip': '* required',
+            'system_users': _('System user will be granted for user '
+                              'to login assets (using ansible create automatic)'),
+            'admin_user': _('Admin user should be exist on asset '
+                            'already, And have sudo ALL permission'),
+        }
+
+
+class AssetBulkUpdateForm(forms.ModelForm):
+    assets = forms.MultipleChoiceField(
+        required=True,
+        help_text='* required',
+        label=_('Select assets'),
+        widget=forms.SelectMultiple(
+            attrs={
+                'class': 'select2',
+                'data-placeholder': _('Select assets')
+            }
+        )
+    )
+    port = forms.IntegerField(min_value=1, max_value=65535,
+                              required=False, label=_('Port'))
+
+    class Meta:
+        model = Asset
+        fields = [
+            'assets', 'port', 'groups', 'admin_user', 'idc',
+            'type', 'env', 'status',
+        ]
+        widgets = {
+            'groups': forms.SelectMultiple(
+                attrs={'class': 'select2',
+                       'data-placeholder': _('Select asset groups')}),
+            'admin_user': forms.Select(
+                attrs={'class': 'select2',
+                       'data-placeholder': _('Select asset admin user')}),
+        }
+
+    def save(self, commit=True):
+        cleaned_data = {k: v for k, v in self.cleaned_data.items() if v is not None}
+        assets_id = cleaned_data.pop('assets')
+        groups = cleaned_data.pop('groups')
+        assets = Asset.objects.filter(id__in=assets_id)
+        assets.update(**cleaned_data)
+        if groups:
+            for asset in assets:
+                asset.groups.set(groups)
+        return assets
+
+
+class AssetGroupForm(forms.ModelForm):
+    # See AdminUserForm comment same it
+    assets = forms.ModelMultipleChoiceField(
+        queryset=Asset.objects.all(),
+        label=_('Asset'),
+        required=False,
+        widget=forms.SelectMultiple(
+            attrs={'class': 'select2', 'data-placeholder': _('Select assets')})
+        )
+
+    def __init__(self, *args, **kwargs):
+        if kwargs.get('instance', None):
+            initial = kwargs.get('initial', {})
+            initial['assets'] = kwargs['instance'].assets.all()
+        super(AssetGroupForm, self).__init__(*args, **kwargs)
+
+    def _save_m2m(self):
+        super(AssetGroupForm, self)._save_m2m()
+        assets = self.cleaned_data['assets']
+        self.instance.assets.clear()
+        self.instance.assets.add(*tuple(assets))
+
+    class Meta:
+        model = AssetGroup
+        fields = [
+            "name", "comment",
+        ]
+        help_texts = {
+            'name': '* required',
+        }
+
+
+class IDCForm(forms.ModelForm):
+    # See AdminUserForm comment same it
+    assets = forms.ModelMultipleChoiceField(
+        queryset=Asset.objects.all(),
+        label=_('Asset'),
+        required=False,
+        widget=forms.SelectMultiple(
+            attrs={'class': 'select2', 'data-placeholder': _('Select assets')})
+        )
+
+    def __init__(self, *args, **kwargs):
+        if kwargs.get('instance'):
+            initial = kwargs.get('initial', {})
+            initial['assets'] = kwargs['instance'].assets.all()
+        super(IDCForm, self).__init__(*args, **kwargs)
+
+    def _save_m2m(self):
+        super(IDCForm, self)._save_m2m()
+        assets = self.cleaned_data['assets']
+        self.instance.assets.clear()
+        self.instance.assets.add(*tuple(assets))
+
+    class Meta:
+        model = IDC
+        fields = ['name', "bandwidth", "operator", 'contact',
+                  'phone', 'address', 'intranet', 'extranet', 'comment']
+        widgets = {
+            'name': forms.TextInput(attrs={'placeholder': _('Name')}),
+            'intranet': forms.Textarea(
+                attrs={'placeholder': 'IP段之间用逗号隔开，如：192.168.1.0/24,192.168.1.0/24'}),
+            'extranet': forms.Textarea(
+                attrs={'placeholder': 'IP段之间用逗号隔开，如：201.1.32.1/24,202.2.32.1/24'})
+        }
+        help_texts = {
+            'name': '* required'
+        }
+
+
+class AdminUserForm(forms.ModelForm):
+    # Form field name can not start with `_`, so redefine it,
+    password = forms.CharField(
+        widget=forms.PasswordInput, max_length=100,
+        strip=True, required=False,
+        help_text=_('If also set private key, use that first'),
+    )
+    # Need use upload private key file except paste private key content
+    private_key_file = forms.FileField(required=False)
+
+    def save(self, commit=True):
+        # Because we define custom field, so we need rewrite :method: `save`
+        admin_user = super(AdminUserForm, self).save(commit=commit)
+        password = self.cleaned_data['password']
+        private_key = self.cleaned_data['private_key_file']
+
+        if password:
+            admin_user.password = password
+        if private_key:
+            public_key = ssh_pubkey_gen(private_key)
+            admin_user.private_key = private_key
+            admin_user.public_key = public_key
+        admin_user.save()
+        return admin_user
+
+    def clean_private_key_file(self):
+        private_key_file = self.cleaned_data['private_key_file']
+        if private_key_file:
+            private_key = private_key_file.read()
+            if not validate_ssh_private_key(private_key):
+                raise forms.ValidationError(_('Invalid private key'))
+            return private_key
+        return private_key_file
+
+    def clean(self):
+        password = self.cleaned_data['password']
+        private_key_file = self.cleaned_data.get('private_key_file', '')
+
+        if not self.instance and not (password or private_key_file):
+            raise forms.ValidationError(
+                _('Password and private key file must be input one'))
+
+    class Meta:
+        model = AdminUser
+        fields = ['name', 'username', 'password',
+                  'private_key_file', 'comment']
+        widgets = {
+            'name': forms.TextInput(attrs={'placeholder': _('Name')}),
+            'username': forms.TextInput(attrs={'placeholder': _('Username')}),
+        }
+        help_texts = {
+            'name': '* required',
+            'username': '* required',
+        }
+
+
+class SystemUserForm(forms.ModelForm):
+    # Admin user assets define, let user select, save it in form not in view
+    auto_generate_key = forms.BooleanField(initial=True, required=False)
+    # Form field name can not start with `_`, so redefine it,
+    password = forms.CharField(widget=forms.PasswordInput, required=False,
+                               max_length=100, strip=True)
+    # Need use upload private key file except paste private key content
+    private_key_file = forms.FileField(required=False)
+
+    def __init__(self, *args, **kwargs):
+        super(SystemUserForm, self).__init__(*args, **kwargs)
+
+    def save(self, commit=True):
+        # Because we define custom field, so we need rewrite :method: `save`
+        system_user = super(SystemUserForm, self).save(commit=commit)
+        password = self.cleaned_data['password']
+        private_key_file = self.cleaned_data.get('private_key_file')
+
+        if system_user.auth_method == 'P':
+            if password:
+                system_user.password = password
+        elif system_user.auth_method == 'K':
+            if self.cleaned_data['auto_generate_key']:
+                private_key, public_key = ssh_key_gen(username=system_user.name)
+                logger.info('Generate private key and public key')
+            else:
+                private_key = private_key_file.read().strip()
+                public_key = ssh_pubkey_gen(private_key=private_key)
+            system_user.private_key = private_key
+            system_user.public_key = public_key
+        system_user.save()
+        return self.instance
+
+    def clean_private_key_file(self):
+        if self.data['auth_method'] == 'K' and \
+                not self.cleaned_data['auto_generate_key']:
+            if not self.cleaned_data['private_key_file']:
+                raise forms.ValidationError(_('Private key required'))
+            else:
+                key_string = self.cleaned_data['private_key_file'].read()
+                self.cleaned_data['private_key_file'].seek(0)
+                if not validate_ssh_private_key(key_string):
+                    raise forms.ValidationError(_('Invalid private key'))
+        return self.cleaned_data['private_key_file']
+
+    def clean_password(self):
+        if self.data['auth_method'] == 'P':
+            if not self.cleaned_data.get('password'):
+                raise forms.ValidationError(_('Password required'))
+        return self.cleaned_data['password']
+
+    class Meta:
+        model = SystemUser
+        fields = [
+            'name', 'username', 'protocol', 'auto_generate_key', 'password',
+            'private_key_file', 'auth_method', 'auto_push', 'sudo',
+            'comment', 'shell'
+        ]
+        widgets = {
+            'name': forms.TextInput(attrs={'placeholder': _('Name')}),
+            'username': forms.TextInput(attrs={'placeholder': _('Username')}),
+        }
+        help_texts = {
+            'name': '* required',
+            'username': '* required',
+            'auto_push': 'Auto push system user to asset',
+        }
+
+
+class SystemUserUpdateForm(forms.ModelForm):
+    # Admin user assets define, let user select, save it in form not in view
+    auto_generate_key = forms.BooleanField(initial=False, required=False)
+    # Form field name can not start with `_`, so redefine it,
+    password = forms.CharField(widget=forms.PasswordInput, required=False,
+                               max_length=100, strip=True)
+    # Need use upload private key file except paste private key content
+    private_key_file = forms.FileField(required=False)
+
+    def __init__(self, *args, **kwargs):
+        super(SystemUserUpdateForm, self).__init__(*args, **kwargs)
+
+    def save(self, commit=True):
+        # Because we define custom field, so we need rewrite :method: `save`
+        system_user = super(SystemUserUpdateForm, self).save(commit=commit)
+        password = self.cleaned_data['password']
+        private_key_file = self.cleaned_data.get('private_key_file')
+
+        if system_user.auth_method == 'P' and password:
+            system_user.password = password
+        elif system_user.auth_method == 'K' and private_key_file:
+            private_key = private_key_file.read().strip()
+            public_key = ssh_pubkey_gen(private_key=private_key)
+            system_user.private_key = private_key
+            system_user.public_key = public_key
+        system_user.save()
+        return self.instance
+
+    def clean_private_key_file(self):
+        if self.data['auth_method'] == 'K' and self.cleaned_data['private_key_file']:
+            key_string = self.cleaned_data['private_key_file'].read()
+            self.cleaned_data['private_key_file'].seek(0)
+            if not validate_ssh_private_key(key_string):
+                raise forms.ValidationError(_('Invalid private key'))
+        return self.cleaned_data['private_key_file']
+
+    class Meta:
+        model = SystemUser
+        fields = [
+            'name', 'username', 'protocol', 'auto_generate_key', 'password',
+            'private_key_file', 'auth_method', 'auto_push', 'sudo',
+            'comment', 'shell'
+        ]
+        widgets = {
+            'name': forms.TextInput(attrs={'placeholder': _('Name')}),
+            'username': forms.TextInput(attrs={'placeholder': _('Username')}),
+        }
+        help_texts = {
+            'name': '* required',
+            'username': '* required',
+            'auto_push': 'Auto push system user to asset',
+        }
+
+
+
+class FileForm(forms.Form):
+    file = forms.FileField()
--- a/apps/assets/hands.py
+++ b/apps/assets/hands.py
@@ -0,0 +1,18 @@
+"""
+    jumpserver.__app__.hands.py
+    ~~~~~~~~~~~~~~~~~
+
+    This app depends other apps api, function .. should be import or write mack here.
+
+    Other module of this app shouldn't connect with other app.
+
+    :copyright: (c) 2014-2017 by Jumpserver Team.
+    :license: GPL v2, see LICENSE for more details.
+"""
+
+
+from users.utils import AdminUserRequiredMixin
+from users.permissions import IsAppUser, IsSuperUser, IsValidUser
+from users.models import User, UserGroup
+from perms.utils import get_user_granted_assets
+from perms.tasks import push_users
--- a/apps/assets/migrations/init.py
+++ b/apps/assets/migrations/init.py
--- a/apps/assets/models/init.py
+++ b/apps/assets/models/init.py
@@ -0,0 +1,9 @@
+#!/usr/bin/env python
+# -*- coding: utf-8 -*-
+# 
+
+from .idc import *
+from .user import *
+from .group import *
+from .asset import *
+from .utils import *
--- a/apps/assets/models/asset.py
+++ b/apps/assets/models/asset.py
@@ -0,0 +1,156 @@
+#!/usr/bin/env python
+# -*- coding: utf-8 -*-
+# 
+
+from __future__ import unicode_literals
+
+from django.db import models
+import logging
+from django.utils.translation import ugettext_lazy as _
+
+from . import IDC, AssetGroup, AdminUser, SystemUser
+
+__all__ = ['Asset']
+logger = logging.getLogger(__name__)
+
+
+def get_default_idc():
+    return IDC.initial()
+
+
+class Asset(models.Model):
+    STATUS_CHOICES = (
+        ('In use', _('In use')),
+        ('Out of use', _('Out of use')),
+    )
+    TYPE_CHOICES = (
+        ('Server', _('Server')),
+        ('VM', _('VM')),
+        ('Switch', _('Switch')),
+        ('Router', _('Router')),
+        ('Firewall', _('Firewall')),
+        ('Storage', _("Storage")),
+    )
+    ENV_CHOICES = (
+        ('Prod', 'Production'),
+        ('Dev', 'Development'),
+        ('Test', 'Testing'),
+    )
+
+    # Important
+    ip = models.GenericIPAddressField(max_length=32, verbose_name=_('IP'), db_index=True)
+    hostname = models.CharField(max_length=128, unique=True, verbose_name=_('Hostname'))
+    port = models.IntegerField(default=22, verbose_name=_('Port'))
+    groups = models.ManyToManyField(AssetGroup, blank=True, related_name='assets',
+                                    verbose_name=_('Asset groups'))
+    admin_user = models.ForeignKey(AdminUser, null=True, blank=True, related_name='assets',
+                                   on_delete=models.SET_NULL, verbose_name=_("Admin user"))
+    system_users = models.ManyToManyField(SystemUser, blank=True,
+                                          related_name='assets',
+                                          verbose_name=_("System User"))
+    idc = models.ForeignKey(IDC, blank=True, null=True, related_name='assets',
+                            on_delete=models.SET_NULL, verbose_name=_('IDC'),)
+    is_active = models.BooleanField(default=True, verbose_name=_('Is active'))
+    type = models.CharField(choices=TYPE_CHOICES, max_length=16, blank=True, null=True,
+                            default='Server', verbose_name=_('Asset type'),)
+    env = models.CharField(choices=ENV_CHOICES, max_length=8, blank=True, null=True,
+                           default='Prod', verbose_name=_('Asset environment'),)
+    status = models.CharField(choices=STATUS_CHOICES, max_length=12, null=True, blank=True,
+                              default='In use', verbose_name=_('Asset status'))
+
+    # Some information
+    public_ip = models.GenericIPAddressField(max_length=32, blank=True,
+                                             null=True, verbose_name=_('Public IP'))
+    remote_card_ip = models.CharField(max_length=16, null=True, blank=True,
+                                      verbose_name=_('Remote control card IP'))
+    cabinet_no = models.CharField(max_length=32, null=True, blank=True, verbose_name=_('Cabinet number'))
+    cabinet_pos = models.IntegerField(null=True, blank=True, verbose_name=_('Cabinet position'))
+    number = models.CharField(max_length=32, null=True, blank=True, verbose_name=_('Asset number'))
+
+    # Collect
+    vendor = models.CharField(max_length=64, null=True, blank=True, verbose_name=_('Vendor'))
+    model = models.CharField(max_length=54, null=True, blank=True, verbose_name=_('Model'))
+    sn = models.CharField(max_length=128, null=True, blank=True, verbose_name=_('Serial number'))
+
+    cpu_model = models.CharField(max_length=64, null=True, blank=True, verbose_name=_('CPU model'))
+    cpu_count = models.IntegerField(null=True, verbose_name=_('CPU count'))
+    cpu_cores = models.IntegerField(null=True, verbose_name=_('CPU cores'))
+    memory = models.CharField(max_length=64, null=True, blank=True, verbose_name=_('Memory'))
+    disk_total = models.CharField(max_length=1024, null=True, blank=True, verbose_name=_('Disk total'))
+    disk_info = models.CharField(max_length=1024, null=True, blank=True, verbose_name=_('Disk info'))
+
+    platform = models.CharField(max_length=128, null=True, blank=True, verbose_name=_('Platform'))
+    os = models.CharField(max_length=128, null=True, blank=True, verbose_name=_('OS'))
+    os_version = models.CharField(max_length=16, null=True, blank=True, verbose_name=_('OS version'))
+    os_arch = models.CharField(max_length=16, blank=True, null=True, verbose_name=_('OS arch'))
+    hostname_raw = models.CharField(max_length=128, blank=True, null=True, verbose_name=_('Hostname raw'))
+
+    created_by = models.CharField(max_length=32, null=True, blank=True, verbose_name=_('Created by'))
+    date_created = models.DateTimeField(auto_now_add=True, null=True, blank=True, verbose_name=_('Date created'))
+    comment = models.TextField(max_length=128, default='', blank=True, verbose_name=_('Comment'))
+
+    def __unicode__(self):
+        return '%s <%s: %s>' % (self.hostname, self.ip, self.port)
+    __str__ = __unicode__
+
+    @property
+    def is_valid(self):
+        warning = ''
+        if not self.is_active:
+            warning += ' inactive'
+        else:
+            return True, ''
+        return False, warning
+
+    def to_json(self):
+        return {
+            'id': self.id,
+            'hostname': self.hostname,
+            'ip': self.ip,
+            'port': self.port,
+        }
+
+    def _to_secret_json(self):
+        """Ansible use it create inventory"""
+        return {
+            'id': self.id,
+            'hostname': self.hostname,
+            'ip': self.ip,
+            'port': self.port,
+            'groups': [group.name for group in self.groups.all()],
+            'username': self.admin_user.username if self.admin_user else '',
+            'password': self.admin_user.password if self.admin_user else '',
+            'private_key': self.admin_user.private_key_file if self.admin_user else None,
+            'become': {
+                'method': self.admin_user.become_method,
+                'user': self.admin_user.become_user,
+                'pass': self.admin_user.become_pass,
+            } if self.admin_user and self.admin_user.become else {},
+        }
+
+    class Meta:
+        unique_together = ('ip', 'port')
+
+    @classmethod
+    def generate_fake(cls, count=100):
+        from random import seed, choice
+        import forgery_py
+        from django.db import IntegrityError
+
+        seed()
+        for i in range(count):
+            asset = cls(ip='%s.%s.%s.%s' % (i, i, i, i),
+                        hostname=forgery_py.internet.user_name(True),
+                        admin_user=choice(AdminUser.objects.all()),
+                        idc=choice(IDC.objects.all()),
+                        port=22,
+                        created_by='Fake')
+            try:
+                asset.save()
+                asset.system_users = [choice(SystemUser.objects.all()) for i in range(3)]
+                asset.groups = [choice(AssetGroup.objects.all()) for i in range(3)]
+                logger.debug('Generate fake asset : %s' % asset.ip)
+            except IntegrityError:
+                print('Error continue')
+                continue
+
--- a/apps/assets/models/group.py
+++ b/apps/assets/models/group.py
@@ -0,0 +1,52 @@
+#!/usr/bin/env python
+# -*- coding: utf-8 -*-
+# 
+
+from __future__ import unicode_literals
+
+from django.db import models
+import logging
+from django.utils.translation import ugettext_lazy as _
+
+from . import SystemUser
+
+__all__ = ['AssetGroup']
+logger = logging.getLogger(__name__)
+
+
+class AssetGroup(models.Model):
+    name = models.CharField(max_length=64, unique=True, verbose_name=_('Name'))
+    system_users = models.ManyToManyField(SystemUser, related_name='asset_groups', blank=True)
+    created_by = models.CharField(max_length=32, blank=True, verbose_name=_('Created by'))
+    date_created = models.DateTimeField(auto_now_add=True, null=True, verbose_name=_('Date created'))
+    comment = models.TextField(blank=True, verbose_name=_('Comment'))
+
+    def __unicode__(self):
+        return self.name
+    __str__ = __unicode__
+
+    class Meta:
+        ordering = ['name']
+
+    @classmethod
+    def initial(cls):
+        asset_group = cls(name=_('Default'), comment=_('Default asset group'))
+        asset_group.save()
+
+    @classmethod
+    def generate_fake(cls, count=100):
+        from random import seed
+        import forgery_py
+        from django.db import IntegrityError
+
+        seed()
+        for i in range(count):
+            group = cls(name=forgery_py.name.full_name(),
+                        comment=forgery_py.lorem_ipsum.sentence(),
+                        created_by='Fake')
+            try:
+                group.save()
+                logger.debug('Generate fake asset group: %s' % group.name)
+            except IntegrityError:
+                print('Error continue')
+                continue
--- a/apps/assets/models/idc.py
+++ b/apps/assets/models/idc.py
@@ -0,0 +1,69 @@
+#!/usr/bin/env python
+# -*- coding: utf-8 -*-
+#
+
+from __future__ import unicode_literals
+
+import logging
+
+from django.db import models
+from django.utils.translation import ugettext_lazy as _
+
+
+__all__ = ['IDC']
+logger = logging.getLogger(__name__)
+
+
+class IDC(models.Model):
+    name = models.CharField(max_length=32, verbose_name=_('Name'))
+    bandwidth = models.CharField(
+        max_length=32, blank=True, verbose_name=_('Bandwidth'))
+    contact = models.CharField(
+        max_length=128, blank=True, verbose_name=_('Contact'))
+    phone = models.CharField(max_length=32, blank=True,
+                             verbose_name=_('Phone'))
+    address = models.CharField(
+        max_length=128, blank=True, verbose_name=_("Address"))
+    intranet = models.TextField(blank=True, verbose_name=_('Intranet'))
+    extranet = models.TextField(blank=True, verbose_name=_('Extranet'))
+    date_created = models.DateTimeField(
+        auto_now_add=True, null=True, verbose_name=_('Date created'))
+    operator = models.CharField(
+        max_length=32, blank=True, verbose_name=_('Operator'))
+    created_by = models.CharField(
+        max_length=32, blank=True, verbose_name=_('Created by'))
+    comment = models.TextField(blank=True, verbose_name=_('Comment'))
+
+    def __unicode__(self):
+        return self.name
+    __str__ = __unicode__
+
+    @classmethod
+    def initial(cls):
+        return cls.objects.get_or_create(name=_('Default'), created_by=_('System'), comment=_('Default IDC'))[0]
+
+    class Meta:
+        ordering = ['name']
+
+    @classmethod
+    def generate_fake(cls, count=5):
+        from random import seed, choice
+        import forgery_py
+        from django.db import IntegrityError
+
+        seed()
+        for i in range(count):
+            idc = cls(name=forgery_py.name.full_name(),
+                      bandwidth='200M',
+                      contact=forgery_py.name.full_name(),
+                      phone=forgery_py.address.phone(),
+                      address=forgery_py.address.city() + forgery_py.address.street_address(),
+                      operator=choice(['北京联通', '北京电信', 'BGP全网通']),
+                      comment=forgery_py.lorem_ipsum.sentence(),
+                      created_by='Fake')
+            try:
+                idc.save()
+                logger.debug('Generate fake asset group: %s' % idc.name)
+            except IntegrityError:
+                print('Error continue')
+                continue
--- a/apps/assets/models/user.py
+++ b/apps/assets/models/user.py
@@ -0,0 +1,259 @@
+#!/usr/bin/env python
+# -*- coding: utf-8 -*-
+#
+
+from __future__ import unicode_literals
+import os
+import logging
+from hashlib import md5
+
+from django.core.exceptions import ValidationError
+from django.db import models
+from django.utils.translation import ugettext_lazy as _
+from django.conf import settings
+
+from common.utils import signer, validate_ssh_private_key, ssh_key_string_to_obj
+
+__all__ = ['AdminUser', 'SystemUser', 'private_key_validator']
+logger = logging.getLogger(__name__)
+
+
+def private_key_validator(value):
+    if not validate_ssh_private_key(value):
+        raise ValidationError(
+            _('%(value)s is not an even number'),
+            params={'value': value},
+        )
+
+
+class AdminUser(models.Model):
+    BECOME_METHOD_CHOICES = (
+        ('sudo', 'sudo'),
+        ('su', 'su'),
+    )
+    name = models.CharField(max_length=128, unique=True, verbose_name=_('Name'))
+    username = models.CharField(max_length=16, verbose_name=_('Username'))
+    _password = models.CharField(
+        max_length=256, blank=True, null=True, verbose_name=_('Password'))
+    _private_key = models.TextField(max_length=4096, blank=True, null=True, verbose_name=_('SSH private key'),
+                                    validators=[private_key_validator,])
+    become = models.BooleanField(default=True)
+    become_method = models.CharField(choices=BECOME_METHOD_CHOICES, default='sudo', max_length=4)
+    become_user = models.CharField(default='root', max_length=64)
+    become_pass = models.CharField(default='', max_length=128)
+    _public_key = models.TextField(
+        max_length=4096, blank=True, verbose_name=_('SSH public key'))
+    comment = models.TextField(blank=True, verbose_name=_('Comment'))
+    date_created = models.DateTimeField(auto_now_add=True, null=True)
+    created_by = models.CharField(
+        max_length=32, null=True, verbose_name=_('Created by'))
+
+    def __unicode__(self):
+        return self.name
+    __str__ = __unicode__
+
+    @property
+    def password(self):
+        if self._password:
+            return signer.unsign(self._password)
+        else:
+            return ''
+
+    @password.setter
+    def password(self, password_raw):
+        self._password = signer.sign(password_raw)
+
+    @property
+    def private_key(self):
+        if self._private_key:
+            key_str = signer.unsign(self._private_key)
+            return ssh_key_string_to_obj(key_str)
+        else:
+            return None
+
+    @private_key.setter
+    def private_key(self, private_key_raw):
+        self._private_key = signer.sign(private_key_raw)
+
+    @property
+    def private_key_file(self):
+        if not self.private_key:
+            return None
+        project_dir = settings.PROJECT_DIR
+        tmp_dir = os.path.join(project_dir, 'tmp')
+        key_name = md5(self._private_key.encode()).hexdigest()
+        key_path = os.path.join(tmp_dir, key_name)
+        if not os.path.exists(key_path):
+            self.private_key.write_private_key_file(key_path)
+        return key_path
+
+    @property
+    def public_key(self):
+        return signer.unsign(self._public_key)
+
+    @public_key.setter
+    def public_key(self, public_key_raw):
+        self._public_key = signer.sign(public_key_raw)
+
+    @property
+    def assets_amount(self):
+        return self.assets.count()
+
+    class Meta:
+        ordering = ['name']
+
+    @classmethod
+    def generate_fake(cls, count=10):
+        from random import seed
+        import forgery_py
+        from django.db import IntegrityError
+
+        seed()
+        for i in range(count):
+            obj = cls(name=forgery_py.name.full_name(),
+                      username=forgery_py.internet.user_name(),
+                      password=forgery_py.lorem_ipsum.word(),
+                      comment=forgery_py.lorem_ipsum.sentence(),
+                      created_by='Fake')
+            try:
+                obj.save()
+                logger.debug('Generate fake asset group: %s' % obj.name)
+            except IntegrityError:
+                print('Error continue')
+                continue
+
+
+class SystemUser(models.Model):
+    PROTOCOL_CHOICES = (
+        ('ssh', 'ssh'),
+    )
+    AUTH_METHOD_CHOICES = (
+        ('P', 'Password'),
+        ('K', 'Public key'),
+    )
+    name = models.CharField(max_length=128, unique=True,
+                            verbose_name=_('Name'))
+    username = models.CharField(max_length=16, verbose_name=_('Username'))
+    _password = models.CharField(
+        max_length=256, blank=True, verbose_name=_('Password'))
+    protocol = models.CharField(
+        max_length=16, choices=PROTOCOL_CHOICES, default='ssh', verbose_name=_('Protocol'))
+    _private_key = models.TextField(
+        max_length=8192, blank=True, verbose_name=_('SSH private key'))
+    _public_key = models.TextField(
+        max_length=8192, blank=True, verbose_name=_('SSH public key'))
+    auth_method = models.CharField(choices=AUTH_METHOD_CHOICES, default='K',
+                                   max_length=1, verbose_name=_('Auth method'))
+    auto_push = models.BooleanField(default=True, verbose_name=_('Auto push'))
+    sudo = models.TextField(
+        max_length=4096, default='/sbin/ifconfig', verbose_name=_('Sudo'))
+    shell = models.CharField(
+        max_length=64,  default='/bin/bash', verbose_name=_('Shell'))
+    date_created = models.DateTimeField(auto_now_add=True)
+    created_by = models.CharField(
+        max_length=32, blank=True, verbose_name=_('Created by'))
+    comment = models.TextField(
+        max_length=128, blank=True, verbose_name=_('Comment'))
+
+    def __unicode__(self):
+        return self.name
+    __str__ = __unicode__
+
+    @property
+    def password(self):
+        if self._password:
+            return signer.unsign(self._password)
+        return None
+
+    @password.setter
+    def password(self, password_raw):
+        self._password = signer.sign(password_raw)
+
+    @property
+    def private_key(self):
+        if self._private_key:
+            return signer.unsign(self._private_key)
+        return None
+
+    @private_key.setter
+    def private_key(self, private_key_raw):
+        self._private_key = signer.sign(private_key_raw)
+
+    @property
+    def public_key(self):
+        return signer.unsign(self._public_key)
+
+    @public_key.setter
+    def public_key(self, public_key_raw):
+        self._public_key = signer.sign(public_key_raw)
+
+    def get_assets_inherit_from_asset_groups(self):
+        assets = set()
+        asset_groups = self.asset_groups.all()
+        for asset_group in asset_groups:
+            for asset in asset_group.assets.all():
+                setattr(asset, 'is_inherit_from_asset_groups', True)
+                setattr(asset, 'inherit_from_asset_groups',
+                        getattr(asset, 'inherit_from_asset_groups', set()).add(asset_group))
+                assets.add(asset)
+        return assets
+
+    def get_assets(self):
+        assets = set(self.assets.all()
+                     ) | self.get_assets_inherit_from_asset_groups()
+        return list(assets)
+
+    def _to_secret_json(self):
+        """Push system user use it"""
+        return {
+            'name': self.name,
+            'username': self.username,
+            'shell': self.shell,
+            'sudo': self.sudo,
+            'password': self.password,
+            'public_key': self.public_key
+        }
+
+    @property
+    def assets_amount(self):
+        return self.assets.count()
+
+    @property
+    def asset_group_amount(self):
+        return self.asset_groups.count()
+
+    def to_json(self):
+        return {
+            'id': self.id,
+            'name': self.name,
+            'username': self.username,
+            'protocol': self.protocol,
+            'auth_method': self.auth_method,
+            'auto_push': self.auto_push,
+        }
+
+    class Meta:
+        ordering = ['name']
+
+    @classmethod
+    def generate_fake(cls, count=10):
+        from random import seed
+        import forgery_py
+        from django.db import IntegrityError
+
+        seed()
+        for i in range(count):
+            obj = cls(name=forgery_py.name.full_name(),
+                      username=forgery_py.internet.user_name(),
+                      password=forgery_py.lorem_ipsum.word(),
+                      comment=forgery_py.lorem_ipsum.sentence(),
+                      created_by='Fake')
+            try:
+                obj.save()
+                logger.debug('Generate fake asset group: %s' % obj.name)
+            except IntegrityError:
+                print('Error continue')
+                continue
+
+
+
--- a/apps/assets/models/utils.py
+++ b/apps/assets/models/utils.py
@@ -0,0 +1,23 @@
+#!/usr/bin/env python
+# -*- coding: utf-8 -*-
+#
+
+from . import IDC, SystemUser, AdminUser, AssetGroup, Asset
+
+__all__ = ['init_model', 'generate_fake']
+
+
+def init_model():
+    for cls in [IDC, SystemUser, AdminUser, AssetGroup, Asset]:
+        if hasattr(cls, 'initial'):
+            cls.initial()
+
+
+def generate_fake():
+    for cls in [IDC, SystemUser, AdminUser, AssetGroup, Asset]:
+        if hasattr(cls, 'generate_fake'):
+            cls.generate_fake()
+
+
+if __name__ == '__main__':
+    pass
--- a/apps/assets/serializers.py
+++ b/apps/assets/serializers.py
@@ -0,0 +1,189 @@
+# -*- coding: utf-8 -*-
+from django.utils.translation import ugettext_lazy as _
+from django.core.cache import cache
+from rest_framework import viewsets, serializers, generics
+from .models import AssetGroup, Asset, IDC, AdminUser, SystemUser
+from common.mixins import IDInFilterMixin
+from rest_framework_bulk import BulkListSerializer, BulkSerializerMixin
+
+
+class AssetGroupSerializer(BulkSerializerMixin, serializers.ModelSerializer):
+    assets_amount = serializers.SerializerMethodField()
+    assets = serializers.PrimaryKeyRelatedField(many=True, queryset=Asset.objects.all())
+
+    class Meta:
+        model = AssetGroup
+        list_serializer_class = BulkListSerializer
+        fields = ['id', 'name', 'comment', 'assets_amount', 'assets']
+
+    @staticmethod
+    def get_assets_amount(obj):
+        return obj.assets.count()
+
+
+class AssetUpdateGroupSerializer(serializers.ModelSerializer):
+    groups = serializers.PrimaryKeyRelatedField(many=True, queryset=AssetGroup.objects.all())
+
+    class Meta:
+        model = Asset
+        fields = ['id', 'groups']
+
+
+class AssetUpdateSystemUserSerializer(serializers.ModelSerializer):
+    system_users = serializers.PrimaryKeyRelatedField(many=True, queryset=SystemUser.objects.all())
+
+    class Meta:
+        model = Asset
+        fields = ['id', 'system_users']
+
+
+class AssetGroupUpdateSerializer(serializers.ModelSerializer):
+    """update the asset group, and add or delete the asset to the group"""
+    assets = serializers.PrimaryKeyRelatedField(many=True, queryset=Asset.objects.all())
+
+    class Meta:
+        model = AssetGroup
+        fields = ['id', 'assets']
+
+
+class AssetGroupUpdateSystemUserSerializer(serializers.ModelSerializer):
+    system_users = serializers.PrimaryKeyRelatedField(many=True, queryset=SystemUser.objects.all())
+
+    class Meta:
+        model = AssetGroup
+        fields = ['id', 'system_users']
+
+
+class IDCUpdateAssetsSerializer(serializers.ModelSerializer):
+    assets = serializers.PrimaryKeyRelatedField(many=True, queryset=Asset.objects.all())
+
+    class Meta:
+        model = IDC
+        fields = ['id', 'assets']
+
+
+class AdminUserSerializer(serializers.ModelSerializer):
+    assets = serializers.PrimaryKeyRelatedField(many=True, queryset=Asset.objects.all())
+
+    class Meta:
+        model = AdminUser
+        fields = '__all__'
+
+    def get_field_names(self, declared_fields, info):
+        fields = super(AdminUserSerializer, self).get_field_names(declared_fields, info)
+        fields.append('assets_amount')
+        return fields
+
+
+class SystemUserSerializer(serializers.ModelSerializer):
+    class Meta:
+        model = SystemUser
+        exclude = ('_password', '_private_key', '_public_key')
+
+    def get_field_names(self, declared_fields, info):
+        fields = super(SystemUserSerializer, self).get_field_names(declared_fields, info)
+        fields.extend(['assets_amount'])
+        return fields
+
+
+class AssetSystemUserSerializer(serializers.ModelSerializer):
+    class Meta:
+        model = SystemUser
+        fields = ('id', 'name', 'username', 'protocol', 'auth_method', 'comment')
+
+
+class SystemUserUpdateAssetsSerializer(serializers.ModelSerializer):
+    assets = serializers.PrimaryKeyRelatedField(many=True, queryset=Asset.objects.all())
+
+    class Meta:
+        model = SystemUser
+        fields = ['id', 'assets']
+
+
+class SystemUserUpdateAssetGroupSerializer(serializers.ModelSerializer):
+    asset_groups = serializers.PrimaryKeyRelatedField(many=True, queryset=AssetGroup.objects.all())
+
+    class Meta:
+        model = SystemUser
+        fields = ['id', 'asset_groups']
+
+
+class SystemUserSimpleSerializer(serializers.ModelSerializer):
+    class Meta:
+        model = SystemUser
+        fields = ('id', 'name', 'username')
+
+
+class AssetSerializer(BulkSerializerMixin, serializers.ModelSerializer):
+    # system_users = SystemUserSerializer(many=True, read_only=True)
+    # admin_user = AdminUserSerializer(many=False, read_only=True)
+    hardware = serializers.SerializerMethodField()
+    is_online = serializers.SerializerMethodField()
+
+    class Meta(object):
+        model = Asset
+        list_serializer_class = BulkListSerializer
+        fields = '__all__'
+
+    @staticmethod
+    def get_hardware(obj):
+        if obj.cpu_count:
+            return '{} Core {} {}'.format(obj.cpu_count*obj.cpu_cores, obj.memory, obj.disk_total)
+        else:
+            return ''
+
+    @staticmethod
+    def get_is_online(obj):
+        hostname = obj.hostname
+        if cache.get(hostname) == '1':
+            return True
+        elif cache.get(hostname) == '0':
+            return False
+        else:
+            return 'Unknown'
+
+    def get_field_names(self, declared_fields, info):
+        fields = super(AssetSerializer, self).get_field_names(declared_fields, info)
+        fields.extend(['get_type_display', 'get_env_display'])
+        return fields
+
+
+class AssetGrantedSerializer(serializers.ModelSerializer):
+    system_users_granted = AssetSystemUserSerializer(many=True, read_only=True)
+    is_inherited = serializers.SerializerMethodField()
+    system_users_join = serializers.SerializerMethodField()
+
+    class Meta(object):
+        model = Asset
+        fields = ("id", "hostname", "ip", "port", "system_users_granted", "is_inherited",
+                  "is_active", "system_users_join", "comment")
+
+    @staticmethod
+    def get_is_inherited(obj):
+        if getattr(obj, 'inherited', ''):
+            return True
+        else:
+            return False
+
+    @staticmethod
+    def get_system_users_join(obj):
+        return ', '.join([system_user.username for system_user in obj.system_users_granted])
+
+
+class IDCSerializer(BulkSerializerMixin, serializers.ModelSerializer):
+    assets_amount = serializers.SerializerMethodField()
+    assets = serializers.PrimaryKeyRelatedField(many=True, queryset=Asset.objects.all())
+
+    class Meta:
+        model = IDC
+        fields = '__all__'
+
+    @staticmethod
+    def get_assets_amount(obj):
+        return obj.assets.count()
+
+    def get_field_names(self, declared_fields, info):
+        fields = super(IDCSerializer, self).get_field_names(declared_fields, info)
+        fields.append('assets_amount')
+        return fields
+
--- a/apps/assets/tasks.py
+++ b/apps/assets/tasks.py
@@ -0,0 +1,80 @@
+# ~*~ coding: utf-8 ~*~
+from celery import shared_task
+import json
+
+from django.core.cache import cache
+
+from ops.tasks import run_AdHoc
+from common.utils import get_object_or_none, capacity_convert, sum_capacity
+from .models import Asset
+
+
+@shared_task
+def update_assets_hardware_info(assets):
+    task_tuple = (
+        ('setup', ''),
+    )
+    summary, result = run_AdHoc(task_tuple, assets, record=False)
+    for hostname, info in result['contacted'].items():
+        if info:
+            info = info[0]['ansible_facts']
+        else:
+            continue
+        asset = get_object_or_none(Asset, hostname=hostname)
+        if not asset:
+            continue
+
+        ___vendor = info['ansible_system_vendor']
+        ___model = info['ansible_product_version']
+        ___sn = info['ansible_product_serial']
+
+        for ___cpu_model in info['ansible_processor']:
+            if ___cpu_model.endswith('GHz'):
+                break
+        else:
+            ___cpu_model = 'Unknown'
+        ___cpu_count = info['ansible_processor_count']
+        ___cpu_cores = info['ansible_processor_cores']
+        ___memory = '%s %s' % capacity_convert('{} MB'.format(info['ansible_memtotal_mb']))
+        disk_info = {}
+        for dev, dev_info in info['ansible_devices'].items():
+            if dev_info['removable'] == '0':
+                disk_info[dev] = dev_info['size']
+        ___disk_total = '%s %s' % sum_capacity(disk_info.values())
+        ___disk_info = json.dumps(disk_info)
+
+        ___platform = info['ansible_system']
+        ___os = info['ansible_distribution']
+        ___os_version = info['ansible_distribution_version']
+        ___os_arch = info['ansible_architecture']
+        ___hostname_raw = info['ansible_hostname']
+
+        for k, v in locals().items():
+            if k.startswith('___'):
+                setattr(asset, k.strip('_'), v)
+        asset.save()
+    return summary
+
+
+@shared_task
+def update_assets_hardware_period():
+    assets = Asset.objects.filter(type__in=['Server', 'VM'])
+    update_assets_hardware_info(assets)
+
+
+@shared_task
+def test_admin_user_connective_period():
+    assets = Asset.objects.filter(type__in=['Server', 'VM'])
+    task_tuple = (
+        ('ping', ''),
+    )
+    summary, _ = run_AdHoc(task_tuple, assets, record=False)
+    for i in summary['success']:
+        cache.set(i, '1', 2*60*60*60)
+
+    for i, msg in summary['failed']:
+        cache.set(i, '0', 60*60*60)
+    return summary
+
+
+
--- a/apps/assets/templates/assets/_asset_group_bulk_update_modal.html
+++ b/apps/assets/templates/assets/_asset_group_bulk_update_modal.html
@@ -0,0 +1,42 @@
+{% extends '_modal.html' %}
+{% load i18n %}
+{% block modal_id %}asset_group_bulk_update_modal{% endblock %}
+{% block modal_class %}modal-lg{% endblock %}
+{% block modal_title%}{% trans "Update Asset Group" %}{% endblock %}
+{% block modal_body %}
+{% load bootstrap3 %}
+<p class="text-success text-center">{% trans "Hint: only change the field you want to update." %}</p>
+<form method="post" class="form-horizontal" action="" id="fm_asset_group_bulk_update">
+
+    <div class="form-group">
+        <label for="assets" class="col-sm-2 control-label">{% trans 'Assets' %}</label>
+        <div class="col-sm-9" id="select2-container">
+            <select name="assets" id="select2_groups" data-placeholder="{% trans 'Select Asset' %}" class="select2 form-control m-b" multiple>
+                {% for asset in assets %}
+                    <option value="{{ asset.id }}">{{ asset.ip }}</option>
+                {% endfor %}
+            </select>
+        </div>
+    </div>
+	<div class="form-group">
+        <label for="system_users" class="col-sm-2 control-label">{% trans 'System users' %}</label>
+        <div class="col-sm-9" id="select2-container">
+            <select name="system_users" id="select2_groups" data-placeholder="{% trans 'Select System Users' %}" class="select2 form-control m-b" multiple>
+                {% for system_user in system_users %}
+                    <option value="{{ system_user.id }}">{{ system_user.name }}</option>
+                {% endfor %}
+            </select>
+        </div>
+    </div>
+
+    <div class="form-group">
+        <div class="col-sm-9 col-lg-9 col-sm-offset-2">
+            <div class="checkbox checkbox-success">
+                <input type="checkbox" name="enable_otp" checked id="id_enable_otp"><label for="id_enable_otp">{% trans 'Enable-OTP' %}</label>
+            </div>
+        </div>
+    </div>
+
+</form>
+{% endblock %}
+{% block modal_confirm_id %}btn_asset_group_bulk_update{% endblock %}
--- a/apps/assets/templates/assets/_asset_import_modal.html
+++ b/apps/assets/templates/assets/_asset_import_modal.html
@@ -0,0 +1,29 @@
+{% extends '_modal.html' %}
+{% load i18n %}
+{% block modal_id %}asset_import_modal{% endblock %}
+{% block modal_title%}{% trans "Import asset" %}{% endblock %}
+{% block modal_body %}
+<form method="post" action="{% url 'assets:asset-import' %}" id="fm_asset_import" enctype="multipart/form-data">
+    {% csrf_token %}
+    <div class="form-group">
+        <label class="control-label" for="id_assets">{% trans "Template" %}</label>
+        <a href="{% url 'assets:asset-export' %}" style="display: block">{% trans 'Download' %}</a>
+    </div>
+    <div class="form-group">
+        <label class="control-label" for="id_users">{% trans "Asset csv file" %}</label>
+        <input id="id_assets" type="file" name="file" />
+        <span class="help-block red-fonts">
+            {% trans 'If set id, will use this id update asset existed' %}
+        </span>
+    </div>
+</form>
+<p>
+    <p class="text-success" id="id_created"></p>
+    <p id="id_created_detail"></p>
+    <p class="text-warning" id="id_updated"></p>
+    <p id="id_updated_detail"></p>
+    <p class="text-danger" id="id_failed"></p>
+    <p id="id_failed_detail"></p>
+</p>
+{% endblock %}
+{% block modal_confirm_id %}btn_asset_import{% endblock %}
--- a/apps/assets/templates/assets/_system_user.html
+++ b/apps/assets/templates/assets/_system_user.html
@@ -0,0 +1,121 @@
+{% extends 'base.html' %}
+{% load i18n %}
+{% load static %}
+{% load bootstrap3 %}
+{% block custom_head_css_js %}
+    <link href="{% static "css/plugins/select2/select2.min.css" %}" rel="stylesheet">
+    <script src="{% static "js/plugins/select2/select2.full.min.js" %}"></script>
+{% endblock %}
+
+{% block content %}
+    <div class="wrapper wrapper-content animated fadeInRight">
+        <div class="row">
+            <div class="col-sm-12">
+                <div class="ibox float-e-margins">
+                    <div class="ibox-title">
+                        <h5>{% trans 'Create system user' %}</h5>
+                        <div class="ibox-tools">
+                            <a class="collapse-link">
+                                <i class="fa fa-chevron-up"></i>
+                            </a>
+                            <a class="dropdown-toggle" data-toggle="dropdown" href="#">
+                                <i class="fa fa-wrench"></i>
+                            </a>
+                            <a class="close-link">
+                                <i class="fa fa-times"></i>
+                            </a>
+                        </div>
+                    </div>
+                    <div class="ibox-content">
+                        <form enctype="multipart/form-data" method="post" class="form-horizontal" action="" >
+                            {% csrf_token %}
+                            {% if form.non_field_errors %}
+                                <div class="alert alert-danger">
+                                    {{ form.non_field_errors }}
+                                </div>
+                            {% endif %}
+                            <h3>{% trans 'Basic' %}</h3>
+                            {% bootstrap_field form.name layout="horizontal" %}
+                            {% bootstrap_field form.username layout="horizontal" %}
+                            {% bootstrap_field form.protocol layout="horizontal" %}
+                            <h3>{% trans 'Auth' %}</h3>
+                            {% bootstrap_field form.auth_method layout="horizontal" %}
+                            {% block auth %}
+                            <div class="password-auth hidden">
+                            {% bootstrap_field form.password layout="horizontal" %}
+                            </div>
+                            <div class="public-key-auth">
+                                <div class="form-group">
+                                    <label for="{{ form.auto_generate_key.id_for_label }}" class="col-sm-2 control-label">{% trans 'Auto generate key' %}</label>
+                                    <div class="col-sm-8">
+                                        {{ form.auto_generate_key}}
+                                    </div>
+                                </div>
+                                <div>
+                                    {% bootstrap_field form.private_key_file layout="horizontal" %}
+                                </div>
+                            </div>
+                            {% endblock %}
+                            <div class="form-group">
+                                <label for="{{ form.as_push.id_for_label }}" class="col-sm-2 control-label">{% trans 'Auto push' %}</label>
+                                <div class="col-sm-8">
+                                    {{ form.auto_push}}
+                                </div>
+                            </div>
+                            <h3>{% trans 'Other' %}</h3>
+                            {% bootstrap_field form.sudo layout="horizontal" %}
+                            {% bootstrap_field form.shell layout="horizontal" %}
+                            {% bootstrap_field form.comment layout="horizontal" %}
+                            <div class="form-group">
+                                <div class="col-sm-4 col-sm-offset-2">
+                                    <button class="btn btn-white" type="reset">{% trans 'Reset' %}</button>
+                                    <button id="submit_button" class="btn btn-primary" type="submit">{% trans 'Submit' %}</button>
+                                </div>
+                            </div>
+                        </form>
+                    </div>
+                </div>
+            </div>
+        </div>
+    </div>
+{% endblock %}
+{% block custom_foot_js %}
+    <script>
+        var auth_method = '#'+'{{ form.auth_method.id_for_label }}';
+        var auto_generate_key = '#'+'{{ form.auto_generate_key.id_for_label }}';
+        function authMethodDisplay() {
+            if ($(auth_method).val() == 'P') {
+                $('.password-auth').removeClass('hidden');
+                $('.public-key-auth').addClass('hidden');
+                $('#'+'{{ form.password.id_for_label }}').attr('required', 'required');
+                $('#'+'{{ form.password.id_for_label }}').removeAttr('disabled');
+                $('#'+'{{ form.private_key_file.id_for_label }}').removeAttr('required');
+
+            } else if ($(auth_method).val() == 'K') {
+                $('.password-auth').addClass('hidden');
+                $('.public-key-auth').removeClass('hidden');
+                $('#'+'{{ form.password.id_for_label }}').removeAttr('required');
+                $('#'+'{{ form.password.id_for_label }}').attr('disabled', 'disabled');
+
+                if ($(auto_generate_key).prop('checked')){
+                    $('#'+'{{ form.private_key_file.id_for_label }}').closest('.form-group').addClass('hidden');
+                } else {
+                    $('#'+'{{ form.private_key_file.id_for_label }}').closest('.form-group').removeClass('hidden');
+                    $('#'+'{{ form.private_key_file.id_for_label }}').closest('.form-group input').attr('required', 'required');
+                }
+            }
+        }
+        $(document).ready(function () {
+            $('.select2').select2();
+            authMethodDisplay();
+            $(auth_method).change(function () {
+                authMethodDisplay();
+            });
+            $(auto_generate_key).change(function () {
+                authMethodDisplay();
+            });
+        })
+
+
+    </script>
+{% endblock %}
--- a/apps/assets/templates/assets/admin_user_create_update.html
+++ b/apps/assets/templates/assets/admin_user_create_update.html
@@ -0,0 +1,62 @@
+{% extends 'base.html' %}
+{% load i18n %}
+{% load static %}
+{% load bootstrap3 %}
+{% block custom_head_css_js %}
+    <link href="{% static "css/plugins/select2/select2.min.css" %}" rel="stylesheet">
+    <script src="{% static "js/plugins/select2/select2.full.min.js" %}"></script>
+{% endblock %}
+
+{% block content %}
+    <div class="wrapper wrapper-content animated fadeInRight">
+        <div class="row">
+            <div class="col-sm-12">
+                <div class="ibox float-e-margins">
+                    <div class="ibox-title">
+                        <h5>{% trans 'Create admin user' %}</h5>
+                        <div class="ibox-tools">
+                            <a class="collapse-link">
+                                <i class="fa fa-chevron-up"></i>
+                            </a>
+                            <a class="dropdown-toggle" data-toggle="dropdown" href="#">
+                                <i class="fa fa-wrench"></i>
+                            </a>
+                            <a class="close-link">
+                                <i class="fa fa-times"></i>
+                            </a>
+                        </div>
+                    </div>
+                    <div class="ibox-content">
+                        {% if form.non_field_errors %}
+                        <div class="alert alert-danger">
+                            {{ form.non_field_errors }}
+                        </div>
+                        {% endif %}
+                        <form enctype="multipart/form-data" method="post" class="form-horizontal" action="" >
+                            {% csrf_token %}
+                            {% bootstrap_field form.name layout="horizontal" %}
+                            {% bootstrap_field form.username layout="horizontal" %}
+                            {% bootstrap_field form.password layout="horizontal" %}
+                            {% bootstrap_field form.private_key_file layout="horizontal" %}
+                            {% bootstrap_field form.comment layout="horizontal" %}
+
+                            <div class="form-group">
+                                <div class="col-sm-4 col-sm-offset-2">
+                                    <button class="btn btn-white" type="reset">{% trans 'Reset' %}</button>
+                                    <button id="submit_button" class="btn btn-primary" type="submit">{% trans 'Submit' %}</button>
+                                </div>
+                            </div>
+                        </form>
+                    </div>
+                </div>
+            </div>
+        </div>
+    </div>
+{% endblock %}
+{% block custom_foot_js %}
+    <script>
+        $(document).ready(function () {
+            $('.select2').select2();
+        })
+    </script>
+{% endblock %}
--- a/apps/assets/templates/assets/admin_user_detail.html
+++ b/apps/assets/templates/assets/admin_user_detail.html
@@ -0,0 +1,441 @@
+{% extends 'base.html' %}
+{% load static %}
+{% load i18n %}
+
+{% block custom_head_css_js %}
+    <link href="{% static 'css/plugins/select2/select2.min.css' %}" rel="stylesheet">
+    <script src="{% static 'js/plugins/select2/select2.full.min.js' %}"></script>
+{% endblock %}
+
+{% block content %}
+    <div class="wrapper wrapper-content animated fadeInRight">
+        <div class="row">
+            <div class="col-sm-12">
+                <div class="ibox float-e-margins">
+                    <div class="panel-options">
+                        <ul class="nav nav-tabs">
+                            <li class="active">
+                                <a href="" class="text-center"><i class="fa fa-laptop"></i> {% trans 'Detail' %} </a>
+                            </li>
+                            <li class="pull-right">
+                                <a class="btn btn-outline btn-default" href="{% url 'assets:admin-user-update' pk=admin_user.id %}"><i class="fa fa-edit"></i>Update</a>
+                            </li>
+                            <li class="pull-right">
+                                <a class="btn btn-outline btn-danger btn-delete-admin-user">
+                                    <i class="fa fa-edit"></i>Delete
+                                </a>
+                            </li>
+                        </ul>
+                    </div>
+                    <div class="tab-content">
+                        <div class="col-sm-7" style="padding-left: 0;">
+                            <div class="ibox float-e-margins">
+                                <div class="ibox-title">
+                                    <span class="label"><b>{{ admin_user.name }}</b></span>
+                                    <div class="ibox-tools">
+                                        <a class="collapse-link">
+                                            <i class="fa fa-chevron-up"></i>
+                                        </a>
+                                        <a class="dropdown-toggle" data-toggle="dropdown" href="#">
+                                            <i class="fa fa-wrench"></i>
+                                        </a>
+                                        <ul class="dropdown-menu dropdown-user">
+                                        </ul>
+                                        <a class="close-link">
+                                            <i class="fa fa-times"></i>
+                                        </a>
+                                    </div>
+                                </div>
+                                <div class="ibox-content">
+                                    <table class="table">
+                                        <tbody>
+                                        <tr class="no-borders-tr">
+                                            <td>{% trans 'Name' %}:</td>
+                                            <td><b>{{ admin_user.name }}</b></td>
+                                        </tr>
+                                        <tr>
+                                            <td>{% trans 'Username' %}:</td>
+                                            <td><b>{{ admin_user.username }}</b></td>
+                                        </tr>
+                                        <tr>
+                                            <td>{% trans 'Date created' %}:</td>
+                                            <td><b>{{ admin_user.date_created }}</b></td>
+                                        </tr>
+                                        <tr>
+                                            <td>{% trans 'Created by' %}:</td>
+                                            <td><b>{{ asset_group.created_by  }}</b></td>
+                                        </tr>
+                                        <tr>
+                                            <td>{% trans 'Comment' %}:</td>
+                                            <td><b>{{ admin_user.comment }}</b></td>
+                                        </tr>
+                                        </tbody>
+                                    </table>
+                                </div>
+                            </div>
+
+                            <div class="ibox float-e-margins">
+                                <div class="ibox-title">
+                                    <span style="float: left">{% trans 'Asset list of ' %} <b>{{ admin_user.name }}</b> <span class="badge"> {{ paginator.count }}</span></span>
+                                    <div class="ibox-tools">
+                                        <a class="collapse-link">
+                                            <i class="fa fa-chevron-up"></i>
+                                        </a>
+                                        <a class="dropdown-toggle" data-toggle="dropdown" href="#">
+                                            <i class="fa fa-wrench"></i>
+                                        </a>
+                                        <ul class="dropdown-menu dropdown-user">
+                                        </ul>
+                                        <a class="close-link">
+                                            <i class="fa fa-times"></i>
+                                        </a>
+                                    </div>
+                                </div>
+                                <div class="ibox-content">
+                                    <table class="table table-hover" id="system_user_assets_table">
+                                        <thead>
+                                            <tr>
+                                                <th>{% trans 'Hostname' %}</th>
+                                                <th>{% trans 'IP' %}</th>
+                                                <th>{% trans 'Port' %}</th>
+                                                <th>{% trans 'Alive' %}</th>
+	                                            <th>{% trans 'Action' %}</th>
+                                            </tr>
+                                        </thead>
+                                        <tbody>
+{#                                            {% for asset in page_obj %}#}
+{#                                            <tr>#}
+{#                                                <td>{{ asset.hostname }}</td>#}
+{#                                                <td>{{ asset.ip }}</td>#}
+{#                                                <td>{{ asset.port }}</td>#}
+{#                                                <td>Alive</td>#}
+{#                                            </tr>#}
+{#                                            {% endfor %}#}
+                                        </tbody>
+                                    </table>
+{#                                    <div class="row">#}
+{#                                        {% include '_pagination.html' %}#}
+{#                                    </div>#}
+                                </div>
+                            </div>
+                        </div>
+                        <div class="col-sm-5" style="padding-left: 0;padding-right: 0">
+                            <div class="panel panel-primary">
+                                <div class="panel-heading">
+                                    <i class="fa fa-info-circle"></i> {% trans 'Quick update' %}
+                                </div>
+                                <div class="panel-body">
+                                    <table class="table">
+                                        <tbody>
+                                        <tr class="no-borders-tr">
+                                            <td width="50%">{% trans 'Get install script' %}:</td>
+                                            <td>
+                                                <span style="float: right">
+                                                    <button type="button" class="btn btn-primary btn-xs" style="width: 54px">{% trans 'Get' %}</button>
+                                                </span>
+                                            </td>
+                                        </tr>
+
+                                        <tr>
+                                            <td width="50%">{% trans 'Retest asset connectivity' %}:</td>
+                                            <td>
+                                                <span style="float: right">
+                                                    <button type="button" class="btn btn-primary btn-xs" style="width: 54px">{% trans 'Start' %}</button>
+                                                </span>
+                                            </td>
+                                        </tr>
+
+                                        <tr>
+                                            <td width="50%">{% trans 'Reset private key' %}:</td>
+                                            <td>
+                                                <span style="float: right">
+                                                    <button type="button" class="btn btn-primary btn-xs" style="width: 54px">{% trans 'Reset' %}</button>
+                                                </span>
+                                            </td>
+                                        </tr>
+                                        </tbody>
+                                    </table>
+                                </div>
+                            </div>
+
+                            <div class="panel panel-info">
+                                <div class="panel-heading">
+                                    <i class="fa fa-info-circle"></i> {% trans 'Replace asset admin user with this' %}
+                                </div>
+                                <div class="panel-body">
+                                    <table class="table">
+                                        <tbody>
+                                        <form>
+                                            <tr class="no-borders-tr">
+                                                <td colspan="2">
+                                                    <select data-placeholder="{% trans 'Select asset' %}" class="select2" style="width: 100%" multiple="" tabindex="4">
+                                                        {% for asset in assets_remain %}
+                                                            <option value="{{ asset.id }}">{{ asset.ip }}:{{ asset.port }}</option>
+                                                        {% endfor %}
+                                                    </select>
+                                                </td>
+                                            </tr>
+                                            <tr class="no-borders-tr">
+                                                <td colspan="2">
+                                                    <button type="button" class="btn btn-info btn-sm btn-replace-asset-admin_user">{% trans 'Replace' %}</button>
+                                                </td>
+                                            </tr>
+                                        </form>
+                                        </tbody>
+                                    </table>
+                                </div>
+                            </div>
+
+                            <div class="panel panel-warning">
+                                <div class="panel-heading">
+                                    <i class="fa fa-info-circle"></i> {% trans 'Replace asset admin user with this admin user' %}
+                                </div>
+                                <div class="panel-body">
+                                    <table class="table">
+                                        <tbody>
+                                        <form>
+                                            <tr class="no-borders-tr">
+                                                <td colspan="2">
+                                                    <select data-placeholder="{% trans 'Select asset groups' %}" class="select2" style="width: 100%" multiple="" tabindex="4">
+                                                        {% for asset_group in asset_groups %}
+                                                            <option value="{{ asset_group.id }}">{{ asset_group.name }}</option>
+                                                        {% endfor %}
+                                                    </select>
+                                                </td>
+                                            </tr>
+                                            <tr class="no-borders-tr">
+                                                <td colspan="2">
+                                                    <button type="button" class="btn btn-warning btn-sm btn-replace-asset_groups-admin_user">{% trans 'Replace' %}</button>
+                                                </td>
+                                            </tr>
+                                        </form>
+                                        </tbody>
+                                    </table>
+                                </div>
+                            </div>
+                        </div>
+                    </div>
+                </div>
+            </div>
+        </div>
+    </div>
+    </div>
+
+{% endblock %}
+{% block custom_foot_js %}
+<script>
+Array.prototype.remove = function(val) {
+	var index = this.indexOf(val);
+		if (index > -1) {
+		this.splice(index, 1);
+	}
+};
+Array.prototype.unique = function(){
+	var res = [];
+	var json = {};
+ 	for(var i = 0; i < this.length; i++){
+  		if(!json[this[i]]){
+   			res.push(this[i]);
+   			json[this[i]] = 1;
+  		}
+ 	}
+ 	return res;
+};
+function objectRemove(obj, name, url, data) {
+    function doRemove() {
+        var body = data;
+        var success = function() {
+            swal('Remove!', "[ "+name+"]"+" has been deleted ", "success");
+            $(obj).parent().parent().remove();
+        };
+        var fail = function() {
+            swal("Failed", "Remove"+"[ "+name+" ]"+"failed", "error");
+        };
+        APIUpdateAttr({
+            url: url,
+            body: JSON.stringify(body),
+            method: 'PATCH',
+            success: success,
+            error: fail
+        });
+    }
+    swal({
+        title: 'Are you sure remove ?',
+        text: " [" + name + "] ",
+        type: "warning",
+        showCancelButton: true,
+        cancelButtonText: 'Cancel',
+        confirmButtonColor: "#DD6B55",
+        confirmButtonText: 'Confirm',
+        closeOnConfirm: false
+    }, function () {
+        doRemove()
+    });
+}
+jumpserver.assets_selected = {};
+jumpserver.asset_groups_selected = {};
+$(document).ready(function () {
+	$('.select2').select2()
+	.on("select2:select", function (evt) {
+		var data = evt.params.data;
+		jumpserver.assets_selected[data.id] = data.text;
+		jumpserver.asset_groups_selected[data.id] = data.text;
+	})
+	.on('select2:unselect', function(evt) {
+		var data = evt.params.data;
+		delete jumpserver.assets_selected[data.id];
+		delete jumpserver.asset_groups_selected[data.id]
+	});
+	var options = {
+		ele: $('#system_user_assets_table'),
+		buttons: [],
+		order: [],
+		columnDefs: [
+			{targets: 0, createdCell: function (td, cellData, rowData) {
+				var detail_btn = '<a href="{% url "assets:asset-detail" pk=99991937 %}" data-aid="'+rowData.id+'">' + cellData + '</a>';
+				$(td).html(detail_btn.replace('99991937', rowData.id));
+			}},
+			{targets: 3, createdCell: function (td, cellData) {
+				if (!cellData) {
+					$(td).html('<i class="fa fa-times text-danger"></i>')
+				} else {
+					$(td).html('<i class="fa fa-check text-navy"></i>')
+				}
+			}},
+			{targets: 4, createdCell: function (td, cellData, rowData) {
+				var update_btn = '<a href="{% url "assets:asset-update" pk=99991937 %}" class="btn btn-xs btn-info">{% trans "Update" %}</a>'.replace('99991937', rowData.id);
+				var del_btn = '<a class="btn btn-xs btn-danger m-l-xs btn_asset_remove" data-aid="99991937">{% trans "Remove" %}</a>'.replace('99991937', rowData.id);
+				$(td).html(update_btn + del_btn)
+			}}
+
+			],
+		ajax_url: '{% url "api-assets:asset-list" %}?admin_user_id={{ admin_user.id }}',
+		columns: [{data: "hostname" }, {data: "ip" }, {data: "port" },
+			{data: "is_active" }, {data: "id"}],
+		op_html: $('#actions').html()
+	};
+	jumpserver.initDataTable(options);
+
+    function adminUserDelete(name, url) {
+        function doDelete() {
+            var body = {};
+            var success = function() {
+                swal('Deleted!', "[ "+name+"]"+" has been deleted ", "success");
+	            window.location.href="{% url 'assets:idc-list' %}";
+            };
+            var fail = function() {
+                swal("Failed", "Delete"+"[ "+name+" ]"+"failed", "error");
+            };
+            APIUpdateAttr({
+                url: url,
+                body: JSON.stringify(body),
+                method: 'DELETE',
+                success: success,
+                error: fail
+            });
+        }
+        swal({
+            title: 'Are you sure delete ?',
+            text: " [" + name + "] ",
+            type: "warning",
+            showCancelButton: true,
+            cancelButtonText: 'Cancel',
+            confirmButtonColor: "#DD6B55",
+            confirmButtonText: 'Confirm',
+            closeOnConfirm: false
+        }, function () {
+            doDelete()
+        });
+    }
+})
+
+.on('click', '.btn-replace-asset-admin_user', function () {
+	if (Object.keys(jumpserver.assets_selected).length === 0) {
+		return false;
+	}
+	jumpserver.asset_groups_selected = {};
+	var $data_table = $("#system_user_assets_table").DataTable();
+	var assets = [];
+	$.map(jumpserver.assets_selected, function(value, index) {
+		assets.push(parseInt(index));
+	});
+	assets.unique();
+	var data = [];
+	var admin_user_id = {{ admin_user.id }};
+	var the_url = '{% url "api-assets:asset-list" %}';
+	for (var i=0; i<assets.length; i++) {
+		data.push({"id": assets[i], "admin_user": admin_user_id});
+	}
+	APIUpdateAttr({
+		url: the_url,
+		body: JSON.stringify(data),
+		method: 'PATCH'
+	});
+	$data_table.ajax.reload();
+})
+
+.on('click', '.btn-replace-asset_groups-admin_user', function () {
+	if (Object.keys(jumpserver.asset_groups_selected).length === 0) {
+		return false;
+	}
+	jumpserver.assets_selected = {};
+	var $data_table = $("#system_user_assets_table").DataTable();
+	var asset_groups = [];
+	var assets = [];
+	var data = [];
+	var the_url = '{% url "api-assets:asset-list" %}';
+	$.map(jumpserver.asset_groups_selected, function(value, index) {
+		asset_groups.push(parseInt(index));
+	});
+	$.ajax({
+		url: '{% url "api-assets:asset-group-list" %}?id__in=['+asset_groups.join(',')+']',
+		method: 'GET',
+		dataType: 'json',
+		success: function (result) {
+			for (var i=0; i<result.length; i++) {
+				for (var j=0; j<result[i]['assets'].length; j++) {
+					assets.push(result[i]['assets'][j])
+				}
+			}
+			for (var z=0; z<assets.length; z++) {
+				data.push({"id":assets[z], "admin_user":{{admin_user.id}} });
+			}
+			APIUpdateAttr({
+				url: the_url,
+				body: JSON.stringify(data),
+				method: 'PATCH'
+			});
+			$data_table.ajax.reload();
+		}
+	});
+})
+	
+.on('click', '.btn_asset_remove', function () {
+	var $this = $(this);
+	var the_url = "{% url 'api-assets:admin-user-detail' pk=admin_user.id %}";
+	var name = $(this).closest("tr").find(":nth-child(1) > a").html();
+	var assets = [];
+	var delete_asset_id = $(this).data('aid');
+	$.ajax({
+		url: the_url,
+		method: 'GET',
+		dataType: 'json',
+		success: function (result) {
+			for (var i=0; i<result['assets'].length; i++) {
+				assets.push(result['assets'][i])
+			}
+			assets.remove(delete_asset_id);
+			var data = {"assets": assets};
+			objectRemove($this, name, the_url, data);
+		}
+	})
+}).on('click', '.btn-delete-admin-user', function () {
+    var $this = $(this);
+    var name = "{{ admin_user.name }}";
+    var uid = "{{ admin_user.id }}";
+    var the_url = '{% url "api-assets:admin-user-detail" pk=99991937 %}'.replace('99991937', uid);
+    var redirect_url = "{% url 'assets:admin-user-list' %}";
+    objectDelete($this, name, the_url, redirect_url);
+})
+</script>
+{% endblock %}
--- a/apps/assets/templates/assets/admin_user_list.html
+++ b/apps/assets/templates/assets/admin_user_list.html
@@ -0,0 +1,71 @@
+{% extends '_base_list.html' %}
+{% load i18n static %}
+{% block table_search %}
+{% endblock %}
+{% block table_container %}
+<div class="uc pull-left m-l-5 m-r-5">
+    <a href="{% url "assets:admin-user-create" %}" class="btn btn-sm btn-primary"> {% trans "Create admin user" %} </a>
+</div>
+<table class="table table-striped table-bordered table-hover " id="admin_user_list_table" >
+    <thead>
+    <tr>
+        <th class="text-center">
+            <input type="checkbox" id="check_all" class="ipt_check_all" >
+        </th>
+        <th class="text-center">{% trans 'Name' %}</th>
+        <th class="text-center">{% trans 'Username' %}</th>
+        <th class="text-center">{% trans 'Asset num' %}</th>
+        <th class="text-center">{% trans 'Comment' %}</th>
+        <th class="text-center">{% trans 'Action' %}</th>
+    </tr>
+    </thead>
+    <tbody>
+    </tbody>
+</table>
+{% endblock %}
+{% block content_bottom_left %}{% endblock %}
+{% block custom_foot_js %}
+<script>
+$(document).ready(function(){
+    var options = {
+        ele: $('#admin_user_list_table'),
+        columnDefs: [
+            {targets: 1, createdCell: function (td, cellData, rowData) {
+                var detail_btn = '<a href="{% url "assets:admin-user-detail" pk=99991937 %}">' + cellData + '</a>';
+                $(td).html(detail_btn.replace('99991937', rowData.id));
+             }},
+            {targets: 4, createdCell: function (td, cellData) {
+                var innerHtml = cellData.length > 8 ? cellData.substring(0, 24) + '...': cellData;
+                $(td).html('<a href="javascript:void(0);" data-toggle="tooltip" title="' + cellData + '">' + innerHtml + '</a>');
+             }},
+            {targets: 5, createdCell: function (td, cellData, rowData) {
+{#                var script_btn = '<a href="{% url "assets:admin-user-update" pk=99991937 %}" class="btn btn-xs btn-primary">{% trans "Script" %}</a>'.replace('99991937', cellData);#}
+                var update_btn = '<a href="{% url "assets:admin-user-update" pk=99991937 %}" class="btn btn-xs m-l-xs btn-info">{% trans "Update" %}</a>'.replace('99991937', cellData);
+                var del_btn = '<a class="btn btn-xs btn-danger m-l-xs btn_admin_user_delete" data-uid="99991937">{% trans "Delete" %}</a>'.replace('99991937', cellData);
+{#                $(td).html(script_btn + update_btn + del_btn)#}
+                $(td).html(update_btn + del_btn)
+             }}],
+        ajax_url: '{% url "api-assets:admin-user-list" %}',
+        columns: [{data: function(){return ""}}, {data: "name" }, {data: "username" }, {data: "assets_amount" },
+                  {data: "comment" }, {data: "id" }],
+    };
+    jumpserver.initDataTable(options);
+})
+
+.on('click', '.btn_admin_user_delete', function () {
+	var $this = $(this);
+	var $data_table = $("#admin_user_list_table").DataTable();
+	var name = $(this).closest("tr").find(":nth-child(2)").children('a').html();
+	var uid = $this.data('uid');
+	var the_url = '{% url "api-assets:admin-user-detail" pk=99991937 %}'.replace('99991937', uid);
+	objectDelete($this, name, the_url);
+	setTimeout( function () {
+        $data_table.ajax.reload();
+    }, 3000);
+
+});
+</script>
+{% endblock %}
+
+
+
--- a/apps/assets/templates/assets/asset_bulk_update.html
+++ b/apps/assets/templates/assets/asset_bulk_update.html
@@ -0,0 +1,69 @@
+{% extends '_base_create_update.html' %}
+{% load static %}
+{% load bootstrap3 %}
+{% load i18n %}
+
+{% block form %}
+<div class="ydxbd" id="formlists" style="display: block;">
+    <p id="tags_p" class="mgl-5 c02">选择需要修改属性</p>
+    <div class="tagBtnList">
+        <a class="label label-primary" id="change_all" value="1">全选</a>
+        {% for field in form %}
+            {% if field.name != 'assets' %}
+             <a data-id="{{ field.id_for_label }}" class="label label-default label-primary field-tag" value="1">{{ field.label }}</a>
+            {% endif %}
+        {% endfor %}
+    </div>
+</div>
+<form method="post" class="form-horizontal" id="add_form">
+    {% csrf_token %}
+    {% bootstrap_form form layout="horizontal" %}
+    <div class="form-group abc">
+        <div class="col-sm-4 col-sm-offset-2">
+            <button class="btn btn-white" type="reset">{% trans 'Reset' %}</button>
+            <button class="btn btn-primary" type="submit">{% trans 'Submit' %}</button>
+        </div>
+    </div>
+</form>
+{% endblock %}
+
+{% block custom_foot_js %}
+<script>
+    $(document).ready(function () {
+        $('.select2').select2();
+    }).on('click', '.field-tag', function() {
+        changeField(this);
+    }).on('click', '#change_all', function () {
+        var tag_fields = $('.field-tag');
+        var $this = $(this);
+        var active = '1';
+        if ($this.attr('value') == '0'){
+            active = '0';
+            $this.attr('value', '1').addClass('label-primary')
+        } else {
+            active = '1';
+            $this.attr('value', '0').removeClass('label-primary')
+        }
+        $.each(tag_fields, function (k, v) {
+            changeField(v, active)
+        })
+    });
+
+    function changeField(obj, active) {
+        var $this = $(obj);
+        var field_id = $this.data('id');
+        if (!active) {
+            active = $this.attr('value');
+        }
+        if (active == '0') {
+            $this.attr('value', '1').addClass('label-primary');
+            var form_groups = $('#add_form .form-group:not(.abc)');
+            form_groups.filter(':has(#'  + field_id + ')').show().find('select,input').prop('disabled', false)
+        } else {
+            $this.attr('value', '0').removeClass('label-primary');
+            var form_groups = $('#add_form .form-group:not(.abc)');
+            form_groups.filter(':has(#'  + field_id + ')').hide().find('select,input').prop('disabled', true)
+        }
+    }
+</script>
+{% endblock %}
--- a/apps/assets/templates/assets/asset_create.html
+++ b/apps/assets/templates/assets/asset_create.html
@@ -0,0 +1,58 @@
+{% extends '_base_create_update.html' %}
+{% load static %}
+{% load bootstrap3 %}
+{% load i18n %}
+
+{% block form %}
+    <form action="" method="post" class="form-horizontal">
+    {% if form.non_field_errors %}
+         <div class="alert alert-danger">
+             {{ form.non_field_errors }}
+         </div>
+    {% endif %}
+    {% csrf_token %}
+    <h3>{% trans 'Basic' %}</h3>
+    {% bootstrap_field form.hostname layout="horizontal" %}
+    {% bootstrap_field form.ip layout="horizontal" %}
+    {% bootstrap_field form.public_ip layout="horizontal" %}
+    {% bootstrap_field form.port layout="horizontal" %}
+    {% bootstrap_field form.type layout="horizontal" %}
+    {% bootstrap_field form.env layout="horizontal" %}
+
+    <div class="hr-line-dashed"></div>
+    <h3>{% trans 'Group' %}</h3>
+    {% bootstrap_field form.idc layout="horizontal" %}
+    {% bootstrap_field form.groups layout="horizontal" %}
+
+    <div class="hr-line-dashed"></div>
+    <h3>{% trans 'Asset user' %}</h3>
+    {% bootstrap_field form.admin_user layout="horizontal" %}
+
+    <div class="hr-line-dashed"></div>
+    <h3>{% trans 'Other' %}</h3>
+    {% bootstrap_field form.comment layout="horizontal" %}
+    {% bootstrap_field form.is_active layout="horizontal" %}
+
+
+    <div class="hr-line-dashed"></div>
+    <div class="form-group">
+        <div class="col-sm-4 col-sm-offset-2">
+            <button class="btn btn-default" type="reset"> {% trans 'Reset' %}</button>
+            <button id="submit_button" class="btn btn-primary" type="submit">{% trans 'Submit' %}</button>
+        </div>
+    </div>
+    </form>
+{% endblock %}
+
+{% block custom_foot_js %}
+    <script>
+        $(document).ready(function () {
+            $('.select2').select2();
+            $("#id_tags").select2({
+                tags: true,
+                maximumSelectionLength: 8  //最多能够选择的个数
+                //closeOnSelect: false
+            });
+        })
+    </script>
+{% endblock %}
--- a/apps/assets/templates/assets/asset_detail.html
+++ b/apps/assets/templates/assets/asset_detail.html
@@ -0,0 +1,471 @@
+{% extends 'base.html' %}
+{% load static %}
+{% load i18n %}
+
+{% block custom_head_css_js %}
+    <link href='{% static "css/plugins/select2/select2.min.css" %}' rel="stylesheet">
+    <link href='{% static "css/plugins/sweetalert/sweetalert.css" %}' rel="stylesheet">
+    <script src='{% static "js/plugins/select2/select2.full.min.js" %}'></script>
+    <script src='{% static "js/plugins/sweetalert/sweetalert.min.js" %}'></script>
+{% endblock %}
+
+{% block content %}
+    <div class="wrapper wrapper-content animated fadeInRight">
+        <div class="row">
+            <div class="col-sm-12">
+                <div class="ibox float-e-margins">
+                    <div class="panel-options">
+                        <ul class="nav nav-tabs">
+                            <li class="active">
+                                <a href="{% url 'assets:asset-detail' pk=asset.id %}" class="text-center"><i class="fa fa-laptop"></i> {% trans 'Asset detail' %} </a>
+                            </li>
+                            {% if user.is_superuser %}
+                            <li class="pull-right">
+                                <a class="btn btn-outline btn-default" href="{% url 'assets:asset-update' pk=asset.id %}"><i class="fa fa-edit"></i>Update</a>
+                            </li>
+                            <li class="pull-right">
+                                <a class="btn btn-outline btn-danger btn-delete-asset">
+                                    <i class="fa fa-edit"></i>Delete
+                                </a>
+                            </li>
+                            {% endif %}
+                        </ul>
+                    </div>
+                    <div class="tab-content">
+                        <div class="col-sm-7" style="padding-left: 0">
+                            <div class="ibox float-e-margins">
+                                <div class="ibox-title">
+                                    <span class="label"><b>{{ asset.hostname }}</b></span>
+                                    <div class="ibox-tools">
+                                        <a class="collapse-link">
+                                            <i class="fa fa-chevron-up"></i>
+                                        </a>
+                                        <a class="dropdown-toggle" data-toggle="dropdown" href="#">
+                                            <i class="fa fa-wrench"></i>
+                                        </a>
+                                        <ul class="dropdown-menu dropdown-user">
+                                        </ul>
+                                        <a class="close-link">
+                                            <i class="fa fa-times"></i>
+                                        </a>
+                                    </div>
+                                </div>
+                                <div class="ibox-content">
+                                    <table class="table">
+                                        <tbody>
+                                        <tr class="no-borders-tr">
+                                            <td width="20%">{% trans 'Hostname' %}:</td>
+                                            <td><b>{{ asset.hostname }}</b></td>
+                                        </tr>
+                                        <tr>
+                                            <td>{% trans 'IP' %}:</td>
+                                            <td><b>{{ asset.ip }}</b></td>
+                                        </tr>
+                                        <tr>
+                                            <td>{% trans 'Public IP' %}:</td>
+                                            <td><b>{{ asset.public_ip }}</b></td>
+                                        </tr>
+                                        <tr>
+                                            <td>{% trans 'Port' %}:</td>
+                                            <td><b>{{ asset.port }}</b></td>
+                                        </tr>
+                                        <tr>
+                                            <td>{% trans 'Admin user' %}:</td>
+                                            {% if asset.admin_user %}
+                                            <td><b>{{ asset.admin_user.name }}</b></td>
+                                            {% else %}
+                                            <td><b>None</b></td>
+                                            {% endif %}
+                                        </tr>
+                                        <tr>
+                                            <td>{% trans 'Remote card IP' %}:</td>
+                                            <td><b>{{ asset.remote_card_ip }}</b></td>
+                                        </tr>
+                                        <tr>
+                                            <td>{% trans 'IDC' %}:</td>
+                                            <td><b>{{ asset.idc.name }}</b></td>
+                                        </tr>
+                                        <tr>
+                                            <td>{% trans 'Cabinet number' %}:</td>
+                                            <td><b>{{ asset.cabinet_no }}</b></td>
+                                        </tr>
+                                        <tr>
+                                            <td>{% trans 'Cabinet position' %}:</td>
+                                            <td><b>{{ asset.cabinet_pos }}</b></td>
+                                        </tr>
+                                        <tr>
+                                            <td>{% trans 'Vendor' %}:</td>
+                                            <td><b>{{ asset.vendor }}</b></td>
+                                        </tr>
+                                        <tr>
+                                            <td>{% trans 'Model' %}:</td>
+                                            <td><b>{{ asset.model }}</b></td>
+                                        </tr>
+                                        <tr>
+                                            <td>{% trans 'CPU' %}:</td>
+                                            <td><b>{{ asset.cpu_model }} {{ asset.cpu_count }}*{{ asset.cpu_cores }}</b></td>
+                                        </tr>
+                                        <tr>
+                                            <td>{% trans 'Memory' %}:</td>
+                                            <td><b>{{ asset.memory }}</b></td>
+                                        </tr>
+                                        <tr>
+                                            <td>{% trans 'Disk' %}:</td>
+                                            <td><b>{{ asset.disk_total }}</b></td>
+                                        </tr>
+                                        <tr>
+                                            <td>{% trans 'Platform' %}:</td>
+                                            <td><b>{{ asset.platform }}</b></td>
+                                        </tr>
+                                        <tr>
+                                            <td>{% trans 'OS' %}:</td>
+                                            <td><b>{{ asset.os }} {{ asset.os_version }} {{ asset.os_arch }}</b></td>
+                                        </tr>
+                                        <tr>
+                                            <td>{% trans 'Asset status' %}:</td>
+                                            <td><b>{{ asset.status }}</b></td>
+                                        </tr>
+                                        <tr>
+                                            <td>{% trans 'Is active' %}:</td>
+                                            <td><b>{{ asset.is_active }}</b></td>
+                                        </tr>
+                                        <tr>
+                                            <td>{% trans 'Asset type' %}:</td>
+                                            <td><b>{{ asset.type }}</b></td>
+                                        </tr>
+                                        <tr>
+                                            <td>{% trans 'Asset environment' %}:</td>
+                                            <td><b>{{ asset.env }}</b></td>
+                                        </tr>
+                                        <tr>
+                                            <td>{% trans 'Serial number' %}:</td>
+                                            <td><b>{{ asset.sn }}</b></td>
+                                        </tr>
+                                        <tr>
+                                            <td>{% trans 'Asset number' %}:</td>
+                                            <td><b>{{ asset.number }}</b></td>
+                                        </tr>
+                                        <tr>
+                                            <td>{% trans 'Created by' %}:</td>
+                                            <td><b>{{ asset.created_by }}</b></td>
+                                        </tr>
+                                        <tr>
+                                            <td>{% trans 'Date joined' %}:</td>
+                                            <td><b>{{ asset.date_joined|date:"Y-m-j H:i:s" }}</b></td>
+                                        </tr>
+                                        <tr>
+                                            <td>{% trans 'Comment' %}:</td>
+                                            <td><b>{{ asset.comment }}</b></td>
+                                        </tr>
+                                        </tbody>
+                                    </table>
+                                </div>
+                            </div>
+                        </div>
+                        {% if user.is_superuser %}
+                        <div class="col-sm-5" style="padding-left: 0;padding-right: 0">
+                            <div class="panel panel-primary">
+                                <div class="panel-heading">
+                                    <i class="fa fa-info-circle"></i> {% trans 'Quick modify' %}
+                                </div>
+                                <div class="panel-body">
+                                    <table class="table">
+                                        <tbody>
+                                        <tr class="no-borders-tr">
+                                          <td width="50%">{% trans 'Active' %}:</td>
+                                            <td><span class="pull-right">
+                                                <div class="switch">
+                                                    <div class="onoffswitch">
+                                                        <input type="checkbox" {% if asset.is_active %} checked {% endif %}  class="onoffswitch-checkbox" id="is_active">
+                                                        <label class="onoffswitch-label" for="is_active">
+                                                            <span class="onoffswitch-inner"></span>
+                                                            <span class="onoffswitch-switch"></span>
+                                                        </label>
+                                                    </div>
+                                                </div>
+                                            </span></td>
+                                        </tr>
+                                        <tr>
+                                            <td>{% trans 'Refresh hardware' %}:</td>
+                                            <td>
+                                                <span class="pull-right">
+                                                    <button type="button" class="btn btn-primary btn-xs" id="btn_refresh_asset" style="width: 54px">{% trans 'Refresh' %}</button>
+                                                </span>
+                                            </td>
+                                        </tr>
+                                        <tr>
+                                            <td>{% trans 'Test admin user' %}:</td>
+                                            <td>
+                                                <span class="pull-right">
+                                                    <button type="button" class="btn btn-primary btn-xs" id="btn_test_admin_user" style="width: 54px;">{% trans 'Test' %}</button>
+                                                </span>
+                                            </td>
+                                        </tr>
+                                        </tbody>
+                                    </table>
+                                </div>
+                            </div>
+
+                            <div class="panel panel-info">
+                                <div class="panel-heading">
+                                    <i class="fa fa-info-circle"></i> {% trans 'Asset groups' %}
+                                </div>
+                                <div class="panel-body">
+                                    <table class="table group_edit" id="add-asset2group">
+                                        <tbody>
+                                        <form>
+                                            <tr>
+                                                <td colspan="2" class="no-borders">
+                                                    <select data-placeholder="{% trans 'Join asset groups' %}" id="groups_selected" class="select2 groups" style="width: 100%" multiple="" tabindex="4">
+                                                        {% for asset_group in asset_groups_remain %}
+                                                        <option value="{{ asset_group.id }}" id="opt_{{ asset_group.id }}" >{{ asset_group.name }}</option>
+                                                        {% endfor %}
+                                                    </select>
+                                                </td>
+                                            </tr>
+                                            <tr>
+                                                <td colspan="2" class="no-borders">
+                                                    <button type="button" class="btn btn-info btn-sm" id="btn_add_user_group">{% trans 'Confirm' %}</button>
+                                                </td>
+                                            </tr>
+                                        </form>
+
+                                        {% for asset_group in asset_groups %}
+                                        <tr>
+                                          <td ><b class="bdg_group" data-gid={{ asset_group.id }}>{{ asset_group.name }}</b></td>
+                                          <td>
+                                              <button class="btn btn-danger pull-right btn-xs btn_leave_group" type="button"><i class="fa fa-minus"></i></button>
+                                          </td>
+                                        </tr>
+                                        {% endfor %}
+                                        </tbody>
+                                    </table>
+                                </div>
+                            </div>
+                            <div class="panel panel-warning">
+                                <div class="panel-heading">
+                                    <i class="fa fa-info-circle"></i> {% trans 'Push system users' %}
+                                </div>
+                                <div class="panel-body">
+                                    <table class="table group_edit" id="add-asset2systemuser">
+                                        <tbody>
+                                        <form>
+                                            <tr class="no-borders-tr">
+                                                <td colspan="2">
+                                                    <select data-placeholder="{% trans 'Select system users' %}" class="select2 system-user" style="width: 100%" multiple="" tabindex="4">
+                                                        {% for system_user in system_users_all %}
+                                                            <option value="{{ system_user.id }}" id="opt_{{ system_user.id }}">{{ system_user.name }}</option>
+                                                        {% endfor %}
+                                                    </select>
+                                                </td>
+                                            </tr>
+                                            <tr class="no-borders-tr">
+                                                <td colspan="2">
+                                                    <button type="button" class="btn btn-warning btn-sm btn-system-user">{% trans 'Confirm' %}</button>
+                                                </td>
+                                            </tr>
+                                        </form>
+                                        {% for system_user in system_users %}
+                                        <tr>
+                                            <td ><b class="bdg_group" data-sid={{ system_user.id }}>{{ system_user.name }}</b></td>
+                                            <td>
+                                                <button class="btn btn-danger btn-xs pull-right btn_leave_system" type="button" style="float: right;"><i class="fa fa-minus"></i></button>
+                                            </td>
+                                        </tr>
+                                        {% endfor %}
+                                        </tbody>
+                                    </table>
+                                </div>
+                            </div>
+                            {% endif %}
+                        </div>
+                    </div>
+                </div>
+            </div>
+        </div>
+    </div>
+{% endblock %}
+{% block custom_foot_js %}
+<script>
+jumpserver.groups_selected = {};
+jumpserver.system_user_selected = {};
+function updateAssetGroups(groups) {
+    var the_url = "{% url 'api-assets:asset-update-group' pk=asset.id %}";
+    var body = {
+        groups: Object.assign([], groups)
+    };
+    var success = function(data) {
+        // remove all the selected groups from select > option and rendered ul element;
+        $('.select2-selection__rendered').empty();
+        $('#groups_selected').val('');
+        $.map(jumpserver.groups_selected, function(group_name, index) {
+            $('#opt_' + index).remove();
+            // change tr html of user groups.
+            $('#add-asset2group tbody').append(
+                '<tr>' +
+                '<td><b class="bdg_group" data-gid="' + index + '">' + group_name + '</b></td>' +
+                '<td><button class="btn btn-danger btn-xs pull-right btn_leave_group" type="button"><i class="fa fa-minus"></i></button></td>' +
+                '</tr>'
+            )
+        });
+        // clear jumpserver.groups_selected
+        jumpserver.groups_selected = {};
+    };
+    APIUpdateAttr({
+        url: the_url,
+        body: JSON.stringify(body),
+        success: success
+    });
+}
+
+function updateAssetSystemUser(system_users) {
+    var the_url = "{% url 'api-assets:asset-update-system-users' pk=asset.id %}";
+    var body = {
+        system_users: Object.assign([], system_users)
+    };
+    var success = function(data) {
+        $('.select2-selection__rendered').empty();
+        $('#groups_selected').val('');
+        $.map(jumpserver.system_user_selected, function(name, index) {
+            $('#opt_' + index).remove();
+
+            $('#add-asset2systemuser tbody').append(
+                '<tr>' +
+                '<td><b class="bdg_group" data-sid="' + index + '">' + name + '</b></td>' +
+                '<td><button class="btn btn-danger btn-xs pull-right btn_leave_system" type="button"><i class="fa fa-minus"></i></button></td>' +
+                '</tr>'
+            )
+        });
+        // clear jumpserver.groups_selected
+        jumpserver.system_user_selected = {};
+    };
+    APIUpdateAttr({
+        url: the_url,
+        body: JSON.stringify(body),
+        success: success
+    });
+}
+
+function refreshAssetHardware() {
+    var the_url = "{% url 'api-assets:asset-refresh' pk=asset.id %}";
+    var success = function (data) {
+        location.reload();
+    };
+    APIUpdateAttr({
+        url: the_url,
+        success: success,
+        method: 'GET'
+    })
+}
+
+
+$(document).ready(function () {
+    $('.select2.groups').select2().on('select2:select', function(evt) {
+        var data = evt.params.data;
+        jumpserver.groups_selected[data.id] = data.text;
+    }).on('select2:unselect', function(evt) {
+        var data = evt.params.data;
+        delete jumpserver.groups_selected[data.id]
+    });
+    $('.select2.system-user').select2().on('select2:select', function(evt) {
+        var data = evt.params.data;
+        jumpserver.system_user_selected[data.id] = data.text;
+    }).on('select2:unselect', function(evt) {
+        var data = evt.params.data;
+        delete jumpserver.system_user_selected[data.id]
+    })
+}).on('click', '#is_active', function () {
+    var the_url = '{% url "api-assets:asset-detail" pk=asset.id %}';
+    var checked = $(this).prop('checked');
+    var body = {
+        'is_active': checked
+    };
+    var success = '{% trans "Update successfully!" %}';
+    var status = $(".ibox-content > table > tbody > tr:nth-child(13) > td:last >b").text();
+    APIUpdateAttr({
+        url: the_url,
+        body: JSON.stringify(body),
+        success_message: success
+    });
+    if (status == "False") {
+            $(".ibox-content > table > tbody > tr:nth-child(13) > td:last >b").html('True');
+    }else{
+            $(".ibox-content > table > tbody > tr:nth-child(13) > td:last >b").html('False');
+    }
+}).on('click', '#btn_add_user_group', function () {
+    if (Object.keys(jumpserver.groups_selected).length === 0) {
+       return false;
+    }
+    var groups = $('.bdg_group').map(function() {
+        return $(this).data('gid');
+    }).get();
+    $.map(jumpserver.groups_selected, function(value, index) {
+        groups.push(parseInt(index));
+        $('#opt_' + index).remove();
+    });
+    updateAssetGroups(groups)
+}).on('click', '.btn_leave_group', function() {
+    var $this = $(this);
+    var $tr = $this.closest('tr');
+    var $badge = $tr.find('.bdg_group');
+    var gid = $badge.data('gid');
+    var group_name = $badge.html() || $badge.text();
+    $('#groups_selected').append(
+        '<option value="' + gid + '" id="opt_' + gid + '">' + group_name + '</option>'
+    );
+    $tr.remove();
+    var groups = $('.bdg_group').map(function () {
+        return $(this).data('gid');
+    }).get();
+    updateAssetGroups(groups)
+}).on('click', '.btn-system-user', function () {
+    if (Object.keys(jumpserver.system_user_selected).length === 0) {
+        return false;
+    }
+    var system_users = $('.bdg_group').map(function() {
+            return $(this).data('sid');
+    }).get();
+    $.map(jumpserver.system_user_selected, function(value, index) {
+        system_users.push(parseInt(index));
+        $('#opt_' + index).remove();
+    });
+    updateAssetSystemUser(system_users)
+
+}).on('click', '.btn_leave_system', function () {
+    var $this = $(this);
+    var $tr = $this.closest('tr');
+    var $badge = $tr.find('.bdg_group');
+    var sid = $badge.data('sid');
+    var name = $badge.html() || $badge.text();
+    $('#groups_selected').append(
+        '<option value="' + sid + '" id="opt_' + sid + '">' + name + '</option>'
+    );
+    $tr.remove();
+    var system_users = $('.bdg_group').map(function () {
+            return $(this).data('sid');
+        }).get();
+    updateAssetSystemUser(system_users)
+
+}).on('click', '.btn-delete-asset', function () {
+    var $this = $(this);
+    var name = "{{ asset.hostname }}";
+    var uid = "{{ asset.id }}";
+    var the_url = '{% url "api-assets:asset-detail" pk=99991937 %}'.replace('99991937', uid);
+    var redirect_url = "{% url 'assets:asset-list' %}";
+    objectDelete($this, name, the_url, redirect_url);
+}).on('click', '#btn_refresh_asset', function () {
+    alert('请等待几秒, 等待完成');
+    refreshAssetHardware()
+}).on('click', '#btn_test_admin_user', function () {
+    $.ajax({
+        url: '{% url "api-assets:asset-admin-user-test" pk=asset.id %}'
+    }).done(function (data, textStatue, jqXHR) {
+        toastr.success('Success')
+    }).fail(function (data, textStaue, errorThrown) {
+        toastr.error('Error')
+    })
+})
+
+
+</script>
+{% endblock %}
--- a/apps/assets/templates/assets/asset_group_create.html
+++ b/apps/assets/templates/assets/asset_group_create.html
@@ -0,0 +1,121 @@
+{% extends 'base.html' %}
+{% load i18n %}
+{% load static %}
+{% load bootstrap3 %}
+{% block custom_head_css_js %}
+    <link href="{% static 'css/plugins/select2/select2.min.css' %}" rel="stylesheet">
+    <script src="{% static 'js/plugins/select2/select2.full.min.js' %}"></script>
+{% endblock %}
+{% block content %}
+<div class="wrapper wrapper-content animated fadeInRight">
+    <div class="row">
+        <div class="col-sm-10">
+            <div class="ibox float-e-margins">
+                <div id="ibox-content" class="ibox-title">
+                    <h5> {{ action }}</h5>
+                    <div class="ibox-tools">
+                        <a class="collapse-link">
+                            <i class="fa fa-chevron-up"></i>
+                        </a>
+                        <a class="dropdown-toggle" data-toggle="dropdown" href="#">
+                            <i class="fa fa-wrench"></i>
+                        </a>
+                        <a class="close-link">
+                            <i class="fa fa-times"></i>
+                        </a>
+                    </div>
+                </div>
+
+                <div class="ibox-content">
+                    <div class="panel blank-panel">
+                        <div class="panel-body">
+                            <div class="tab-content">
+                                <div id="tab-1" class="ibox float-e-margins tab-pane active"></div>
+                                    <form id="groupForm" method="post" class="form-horizontal">
+                                        {% csrf_token %}
+                                        <h3 class="widget-head-color-box">资产组信息</h3>
+                                        {% bootstrap_field form.name layout="horizontal" %}
+                                        {% bootstrap_field form.comment layout="horizontal" %}
+                                        <div class="hr-line-dashed"></div>
+                                        <h3 class="widget-head-color-box">用户选择的资产</h3>
+                                            <div class="form-group">
+                                                <label class="col-sm-2 control-label" id="asset_on_count">已选（{{ assets_count }}）</label>
+                                                <div class="col-sm-9" id="asset_sed">
+                                                    <div class="form-asset-on" id="add_asset">
+                                                        <p id="asset_on_p">
+                                                            {% for asset in assets_on_list %}
+                                                            <button name='asset_hostname' title='{{ asset.ip }}' type='button' class='btn btn-default btn-xs'>{{ asset.hostname }}</button>
+                                                           {% endfor %}
+                                                        </p>
+                                                    </div>
+                                                </div>
+                                            </div>
+                                        <div class="hr-line-dashed"></div>
+                                        <div class="form-group">
+                                            <div class="col-sm-4 col-sm-offset-5">
+                                                <button class="btn btn-white" type="reset"> 重置 </button>
+                                                <button class="btn btn-primary" type="submit"> 提交 </button>
+                                                <div id='box2'> </div>
+                                            </div>
+                                        </div>
+                                    </form>
+                                </div>
+                            </div>
+                        </div>
+                    </div>
+                </div>
+            </div>
+        </div>
+    </div>
+</div>
+
+<!-- 模态框（Modal） -->
+<div class="modal fade" id="modal" tabindex="-1" role="dialog" aria-labelledby="myModalLabel" aria-hidden="true">
+   <div class="modal-dialog modal-lg">
+      <div class="modal-content" id="box">
+        <!--此部分为主体内容，将远程加载进来-->
+      </div>
+   </div>
+</div>
+
+{% endblock %}
+
+{% block custom_foot_js %}
+<script type="text/javascript">
+    $(document).ready(function () {
+        $('.select2').select2();
+        $('.select2-system-user').select2();
+    });
+
+    $('#add_asset').on('click',function(){
+        $('#modal').modal('show');
+    });
+
+    $('#modal').modal({
+        show: false,
+        backdrop: 'static',
+        keyboard: 'false',
+        remote:"{% url 'assets:asset-modal-list' %}?group_id={{ group_id }}"
+    });
+    $('#modal').on('show.bs.modal',function(){
+        //alert('当调用show方法时，立即触发；')
+    });
+
+    $('#modal').on('shown.bs.modal',function(){
+        //alert('当弹窗完全加载完后，再触发；')
+    });
+
+    $('#modal').on('hide.bs.modal',function(){
+        //alert('当关闭时，立即触发；')
+    });
+
+    $('#modal').on('hidden.bs.modal',function(){
+        //alert('当关完全关闭后，再触发；')
+    });
+
+    $('#modal').on('loaded.bs.modal',function(){
+        //alert('当远程数据加载完毕后，再触发；')
+    });
+
+</script>
+{% endblock %}
--- a/apps/assets/templates/assets/asset_group_detail.html
+++ b/apps/assets/templates/assets/asset_group_detail.html
@@ -0,0 +1,271 @@
+{% extends 'base.html' %}
+{% load static %}
+{% load i18n %}
+
+{% block custom_head_css_js %}
+    <link href="{% static "css/plugins/select2/select2.min.css" %}" rel="stylesheet">
+    <script src="{% static "js/plugins/select2/select2.full.min.js" %}"></script>
+{% endblock %}
+{% block content %}
+    <div class="wrapper wrapper-content animated fadeInRight">
+        <div class="row">
+            <div class="col-sm-12">
+                <div class="ibox float-e-margins">
+                    <div class="panel-options">
+                        <ul class="nav nav-tabs">
+                            <li class="active"><a href="" class="text-center"><i class="fa fa-laptop"></i> {% trans 'Detail' %} </a></li>
+                            <li class="pull-right">
+                                <a class="btn btn-outline btn-default" href="{% url 'assets:asset-group-update' pk=asset_group.id %}"><i class="fa fa-edit"></i>Update</a>
+                            </li>
+                        </ul>
+                    </div>
+                    <div class="tab-content">
+                        <div class="col-sm-7" style="padding-left: 0">
+                            <div class="ibox float-e-margins">
+                                <div class="ibox-title">
+                                    <span style="float: left"></span>{% trans 'Asset list of ' %} <b>{{ asset_group.name }}</b></span>
+                                    <div class="ibox-tools">
+                                        <a class="collapse-link">
+                                            <i class="fa fa-chevron-up"></i>
+                                        </a>
+                                        <a class="dropdown-toggle" data-toggle="dropdown" href="#">
+                                            <i class="fa fa-wrench"></i>
+                                        </a>
+                                        <ul class="dropdown-menu dropdown-user">
+                                        </ul>
+                                        <a class="close-link">
+                                            <i class="fa fa-times"></i>
+                                        </a>
+                                    </div>
+                                </div>
+                                <div class="ibox-content">
+                                    <table class="table table-hover " id="asset_list_table" >
+                                        <thead>
+                                            <tr>
+                                                <th>{% trans 'Hostname' %}</th>
+                                                <th>{% trans 'IP' %}</th>
+                                                <th>{% trans 'Port' %}</th>
+	                                              <th>{% trans 'Type' %}</th>
+                                                <th>{% trans 'Alive' %}</th>
+	                                              <th>{% trans 'Action' %}</th>
+                                            </tr>
+                                        </thead>
+                                        <tbody>
+                                        </tbody>
+                                    </table>
+                                </div>
+                            </div>
+                        </div>
+
+                        <div class="col-sm-5" style="padding-left: 0;padding-right: 0">
+                            <div class="panel panel-primary">
+                                <div class="panel-heading">
+                                    <i class="fa fa-info-circle"></i> {% trans 'Push system users' %}
+                                </div>
+                                <div class="panel-body">
+                                    <table class="table">
+                                        <tbody>
+                                        <form>
+                                            <tr class="no-borders-tr">
+                                                <td colspan="2">
+                                                    <select data-placeholder="{% trans 'Select system users' %}" class="select2 system-user-select" style="width: 100%" multiple="" tabindex="4">
+                                                        {% for system_user in system_users %}
+                                                            <option value="{{ system_user.id }}"> {{ system_user.name }} </option>
+                                                        {% endfor %}
+                                                    </select>
+                                                </td>
+                                            </tr>
+                                            <tr class="no-borders-tr">
+                                                <td colspan="2">
+                                                    <button type="button" class="btn btn-primary btn-sm btn-push-system-user">{% trans 'Push' %}</button>
+                                                </td>
+                                            </tr>
+                                        </form>
+                                        </tbody>
+                                    </table>
+                                </div>
+                            </div>
+                        </div>
+                    </div>
+                </div>
+            </div>
+        </div>
+    </div>
+{#    </div>#}
+
+{% endblock %}
+{% block custom_foot_js %}
+<script>
+  jumpserver.assets_selected = {};
+  function updateGroupAssets(assets) {
+    var the_url = "{}";
+    var body = {
+      assets: Object.assign([], assets)
+    };
+    var $data_table = $("#asset_list_table").DataTable();
+    var success = function(data) {
+      $('.select2-selection__rendered').empty();
+      $.map(jumpserver.assets_selected, function(asset_ip, index) {
+        $('#opt_' + index).remove();
+        $data_table.ajax.reload();
+      });
+      jumpserver.groups_selected = {};
+    };
+    APIUpdateAttr({
+      url: the_url,
+      body: JSON.stringify(body),
+      method: 'PUT',
+      success: success
+    });
+  }
+
+function leaveGroup(obj, name, url, data) {
+    function doDelete() {
+        var body = data;
+        var success = function() {
+            swal('Deleted!', "[ "+name+"]"+" has been deleted ", "success");
+            $(obj).parent().parent().remove();
+        };
+        var fail = function() {
+            swal("Failed", "Delete"+"[ "+name+" ]"+"failed", "error");
+        };
+        APIUpdateAttr({
+            url: url,
+            body: JSON.stringify(body),
+            method: 'PATCH',
+            success: success,
+            error: fail
+        });
+    }
+    swal({
+        title: 'Are you sure delete ?',
+        text: " [" + name + "] ",
+        type: "warning",
+        showCancelButton: true,
+        cancelButtonText: 'Cancel',
+        confirmButtonColor: "#DD6B55",
+        confirmButtonText: 'Confirm',
+        closeOnConfirm: false
+    }, function () {
+        doDelete()
+    });
+}
+
+function pushSystemUser(sysUserID) {
+	var the_url = "{% url 'api-assets:asset-group-push-system-user' pk=asset_group.id %}";
+    var body = {
+        system_user: sysUserID
+    };
+    var success = function(data) {
+        var url = "{% url 'ops:task-detail' pk=234234234 %}".replace("234234234", data);
+        setTimeout(function () {
+          location.href = url
+        }, 1000);
+    };
+    APIUpdateAttr({
+        url: the_url,
+        method: 'PATCH',
+        body: JSON.stringify(body),
+        success: success
+    });
+}
+
+Array.prototype.remove = function(val) {
+	var index = this.indexOf(val);
+		if (index > -1) {
+		this.splice(index, 1);
+	}
+};
+
+Array.prototype.unique = function(){
+	var res = [];
+	var json = {};
+ 	for(var i = 0; i < this.length; i++){
+  		if(!json[this[i]]){
+   			res.push(this[i]);
+   			json[this[i]] = 1;
+  		}
+ 	}
+ 	return res;
+};
+
+$(document).ready(function () {
+	$('.select2').select2();
+
+  $('.select2.asset-select').select2()
+    .on('select2:select', function(evt) {
+      var data = evt.params.data;
+      jumpserver.assets_selected[data.id] = data.text;
+      console.log(jumpserver.assets_selected)
+    })
+    .on('select2:unselect', function(evt) {
+      var data = evt.params.data;
+      delete jumpserver.assets_selected[data.id]
+    });
+
+	var options = {
+		ele: $('#asset_list_table'),
+		buttons: [],
+		order: [],
+		columnDefs: [
+			{targets: 0, createdCell: function (td, cellData, rowData) {
+				var detail_btn = '<a href="{% url "assets:asset-detail" pk=99991937 %}" data-aid="'+rowData.id+'">' + cellData + '</a>';
+				$(td).html(detail_btn.replace('99991937', rowData.id));
+			}},
+			{targets: 4, createdCell: function (td, cellData) {
+				if (!cellData) {
+					$(td).html('<i class="fa fa-times text-danger"></i>')
+				} else {
+					$(td).html('<i class="fa fa-check text-navy"></i>')
+				}
+			}},
+			{targets: 5, createdCell: function (td, cellData, rowData) {
+				var update_btn = '<a href="{% url "assets:asset-update" pk=99991937 %}" class="btn btn-xs btn-info">{% trans "Update" %}</a>'.replace('99991937', rowData.id);
+				var del_btn = '<a class="btn btn-xs btn-danger m-l-xs btn_asset_delete" data-aid="99991937">{% trans "Remove" %}</a>'.replace('99991937', rowData.id);
+				$(td).html(update_btn + del_btn)
+			}}
+		],
+		ajax_url: '{% url "api-assets:asset-list" %}?asset_group_id={{ asset_group.id }}',
+		columns: [{data: "hostname" }, {data: "ip" }, {data: "port" },
+			{data: "type" }, {data: "is_active" }, {data: "id"}],
+		op_html: $('#actions').html()
+	};
+	jumpserver.initDataTable(options);
+})
+
+.on('click', ".btn-asset-group-add-asset", function () {
+  if (Object.keys(jumpserver.assets_selected).length === 0) {
+    return false;
+  }
+
+  updateGroupAssets(jumpserver.assets_selected);
+
+})
+
+.on('click', '.btn-push-system-user', function () {
+    var data = $('.system-user-select').select2();
+    var system_id = data.val()[0];
+    if (!system_id) {
+        return false
+    }
+    pushSystemUser(system_id)
+})
+
+.on('click', '.btn_asset_delete', function () {
+	var $this = $(this);
+	var the_url = "{% url 'api-assets:asset-groups-update' pk=asset_group.id %}";
+	var name = $(this).closest("tr").find(":nth-child(1) > a").html();
+	var assets = [];
+	$('#asset_list_table > tbody > tr').map(function () {
+		assets.push(parseInt($(this).closest("tr").find(":nth-child(1) > a").attr("data-aid")))
+	});
+	var delete_asset_id = $(this).data('aid');
+	assets.remove(delete_asset_id);
+	var data = {"assets": assets};
+	leaveGroup($this, name, the_url, data);
+})
+
+
+
+</script>
+{% endblock %}
--- a/apps/assets/templates/assets/asset_group_list.html
+++ b/apps/assets/templates/assets/asset_group_list.html
@@ -0,0 +1,183 @@
+{% extends '_base_list.html' %}
+{% load i18n static %}
+{% block table_search %}
+{% endblock %}
+{% block table_container %}
+<div class="uc pull-left m-l-5 m-r-5">
+    <a href="{% url "assets:asset-group-create" %}" class="btn btn-sm btn-primary"> {% trans "Create asset group" %} </a>
+</div>
+<table class="table table-striped table-bordered table-hover " id="asset_groups_list_table" >
+    <thead>
+    <tr>
+        <th class="text-center">
+            <input type="checkbox" id="check_all" class="ipt_check_all" >
+        </th>
+        <th class="text-center">{% trans 'Name' %}</th>
+        <th class="text-center">{% trans 'Asset' %}</th>
+        <th class="text-center">{% trans 'Comment' %}</th>
+        <th class="text-center">{% trans 'Action' %}</th>
+    </tr>
+    </thead>
+    <tbody>
+    </tbody>
+</table>
+<div id="actions" class="hide">
+    <div class="input-group">
+        <select class="form-control m-b" style="width: auto" id="slct_bulk_update">
+            <option value="delete">{% trans 'Delete selected' %}</option>
+            <option value="update">{% trans 'Update selected' %}</option>
+        </select>
+        <div class="input-group-btn pull-left" style="padding-left: 5px;">
+            <button id='btn_bulk_update' style="height: 32px;"  class="btn btn-sm btn-primary">
+             {% trans 'Submit' %}
+            </button>
+        </div>
+    </div>
+</div>
+{% include 'assets/_asset_group_bulk_update_modal.html' %}
+{% endblock %}
+{% block content_bottom_left %}{% endblock %}
+{% block custom_foot_js %}
+<script>
+$(document).ready(function(){
+    var options = {
+        ele: $('#asset_groups_list_table'),
+        columnDefs: [
+            {targets: 1, createdCell: function (td, cellData, rowData) {
+                var detail_btn = '<a href="{% url "assets:asset-group-detail" pk=99991937 %}">' + cellData + '</a>';
+                $(td).html(detail_btn.replace('99991937', rowData.id));
+             }},
+            {targets: 3, createdCell: function (td, cellData) {
+                var innerHtml = cellData.length > 30 ? cellData.substring(0, 30) + '...': cellData;
+                $(td).html('<a href="javascript:void(0);" data-toggle="tooltip" title="' + cellData + '">' + innerHtml + '</a>');
+             }},
+            {targets: 4, createdCell: function (td, cellData, rowData) {
+                var update_btn = '<a href="{% url "assets:asset-group-update" pk=99991937 %}" class="btn btn-xs m-l-xs btn-info">{% trans "Update" %}</a>'.replace('99991937', cellData);
+                var del_btn = '<a class="btn btn-xs btn-danger m-l-xs btn_asset_group_delete" data-uid="99991937">{% trans "Delete" %}</a>'.replace('99991937', cellData);
+                $(td).html(update_btn + del_btn)
+             }}],
+        ajax_url: '{% url "api-assets:asset-group-list" %}',
+        columns: [{data: "id"}, {data: "name" }, {data: "assets_amount" }, {data: "comment" }, {data: "id"}],
+	    op_html: $('#actions').html()
+    };
+    jumpserver.initDataTable(options);
+})
+
+.on('click', '.btn_asset_group_delete', function () {
+	var $this = $(this);
+	var $data_table = $('#asset_groups_list_table').DataTable();
+	var name = $(this).closest("tr").find(":nth-child(2)").children('a').html();
+	var uid = $this.data('uid');
+	var the_url = '{% url "api-assets:asset-group-detail" pk=99991937 %}'.replace('99991937', uid);
+	objectDelete($this, name, the_url);
+	setTimeout( function () {
+        $data_table.ajax.reload();
+    }, 3000);
+})
+
+.on('click', '#btn_bulk_update', function () {
+	var action = $('#slct_bulk_update').val();
+	var $data_table = $('#asset_groups_list_table').DataTable();
+	var id_list = [];
+    var plain_id_list = [];
+    $data_table.rows({selected: true}).every(function(){
+        id_list.push({id: this.data().id});
+        plain_id_list.push(this.data().id);
+    });
+    if (id_list === []) {
+        return false;
+    }
+    var the_url = '{% url "api-assets:asset-group-list" %}';
+    console.log(plain_id_list);
+    console.log(the_url);
+    function doDelete() {
+        swal({
+            title: "{% trans 'Are you sure?' %}",
+            text: "{% trans 'This will delete the selected groups !!!' %}",
+            type: "warning",
+            showCancelButton: true,
+            confirmButtonColor: "#DD6B55",
+            confirmButtonText: "{% trans 'Confirm' %}",
+            closeOnConfirm: false
+        }, function() {
+            var success = function() {
+                var msg = "{% trans 'Group deleted' %}";
+                swal("{% trans 'Group Delete' %}", msg, "success");
+                $('#asset_groups_list_table').DataTable().ajax.reload();
+            };
+            var fail = function() {
+                var msg = "{% trans 'Group deleting failed.' %}";
+                swal("{% trans 'Group Delete' %}", msg, "error");
+            };
+            var url_delete = the_url + '?id__in=' + JSON.stringify(plain_id_list);
+            APIUpdateAttr({url: url_delete, method: 'DELETE', success: success, error: fail});
+            $data_table.ajax.reload();
+            jumpserver.checked = false;
+        });
+    }
+	function doUpdate() {
+		$('#asset_group_bulk_update_modal').modal('show');
+	}
+    switch(action) {
+        case 'delete':
+            doDelete();
+            break;
+        case 'update':
+            doUpdate();
+            break;
+        default:
+            break;
+    }
+})
+
+.on('click', '#btn_asset_group_bulk_update', function () {
+	var json_data = $("#fm_asset_group_bulk_update").serializeObject();
+	var body = {};
+    body.enable_otp = (json_data.enable_otp === 'on')? true: false;
+    if (json_data.type != '') {
+        body.type = json_data.type;
+    }
+
+    if (json_data.assets != undefined) {
+        body.assets = json_data.assets;
+    }
+    if (typeof body.assets === 'string') {
+        body.assets = [parseInt(body.assets)]
+    } else if(typeof body.assets === 'array') {
+        var new_assets = body.assets.map(Number);
+        body.assets = new_assets;
+    }
+
+	if (json_data.system_users != undefined) {
+    	body.system_users = json_data.system_users;
+	}
+	if (typeof body.system_users === 'string') {
+    	body.system_users = [parseInt(body.system_users)];
+	} else if (typeof body.system_users === 'array') {
+    	var new_system_users = body.system_users.map(Number);
+    	body.system_users = new_system_users;
+	}
+
+	var post_list = [];
+    var $data_table = $('#asset_groups_list_table').DataTable()
+    $data_table.rows({selected: true}).every(function(){
+        var content = Object.assign({id: this.data().id}, body);
+        post_list.push(content);
+    });
+    if (post_list === []) {
+        return false
+    }
+    var the_url = '{% url "api-assets:asset-group-list" %}';
+    var success = function() {
+        var msg = "{% trans 'The selected asset groups has been updated successfully.' %}";
+        swal("{% trans 'AssetGroup Updated' %}", msg, "success");
+        $('#asset_groups_list_table').DataTable().ajax.reload();
+        jumpserver.checked = false;
+    };
+{#	console.log(JSON.stringify(post_list));#}
+    APIUpdateAttr({url: the_url, method: 'PATCH', body: JSON.stringify(post_list), success: success});
+    $('#asset_group_bulk_update_modal').modal('hide');
+});
+</script>
+{% endblock %}
+
--- a/apps/assets/templates/assets/asset_list.html
+++ b/apps/assets/templates/assets/asset_list.html
@@ -0,0 +1,319 @@
+{% extends '_base_list.html' %}
+{% load i18n %}
+{% load static %}
+{% block custom_head_css_js %}
+<link href="{% static 'css/plugins/select2/select2.min.css' %}" rel="stylesheet">
+<script src="{% static 'js/plugins/select2/select2.full.min.js' %}"></script>
+
+{#<style>#}
+{#    .custom{#}
+{#        margin-right:5px;#}
+{#        }#}
+{#    #modal .modal-body { max-height: 200px; }#}
+{#</style>#}
+{% endblock %}
+{% block content_left_head %}{% endblock %}
+
+{% block table_search %}
+    <div class="html5buttons">
+        <div class="dt-buttons btn-group">
+            <a class="btn btn-default btn_import" data-toggle="modal" data-target="#asset_import_modal" tabindex="0">
+                <span>{% trans "Import" %}</span>
+            </a>
+            <a class="btn btn-default btn_export" tabindex="0">
+                <span>{% trans "Export" %}</span>
+            </a>
+        </div>
+    </div>
+{% endblock %}
+
+
+{% block table_container %}
+<div class="uc pull-left m-l-5 m-r-5"><a href="{% url "assets:asset-create" %}" class="btn btn-sm btn-primary"> {% trans "Create asset" %} </a></div>
+<table class="table table-striped table-bordered table-hover " id="asset_list_table" >
+    <thead>
+        <tr>
+            <th class="text-center"><input type="checkbox" class="ipt_check_all"></th>
+            <th class="text-center">{% trans 'Hostname' %}</th>
+            <th class="text-center">{% trans 'IP' %}</th>
+            <th class="text-center">{% trans 'Port' %}</th>
+            <th class="text-center">{% trans 'Type' %}</th>
+            <th class="text-center">{% trans 'Env' %}</th>
+            <th class="text-center">{% trans 'Hardware' %}</th>
+            <th class="text-center">{% trans 'Valid' %}</th>
+            <th class="text-center">{% trans 'Alive' %}</th>
+            <th class="text-center">{% trans 'Action' %}</th>
+        </tr>
+    </thead>
+    <tbody>
+    </tbody>
+</table>
+<div id="actions" class="hide">
+    <div class="input-group">
+        <select class="form-control m-b" style="width: auto" id="slct_bulk_update">
+            <option value="delete">{% trans 'Delete selected' %}</option>
+            <option value="update">{% trans 'Update selected' %}</option>
+            <option value="deactive">{% trans 'Deactive selected' %}</option>
+            <option value="active">{% trans 'Active' %}</option>
+        </select>
+        <div class="input-group-btn pull-left" style="padding-left: 5px;">
+            <button id='btn_bulk_update' style="height: 32px;"  class="btn btn-sm btn-primary">
+             {% trans 'Submit' %}
+            </button>
+        </div>
+    </div>
+</div>
+{% include 'assets/_asset_import_modal.html' %}
+{#{% include 'assets/_asset_bulk_update_modal.html' %}#}
+{% endblock %}
+
+{% block custom_foot_js %}
+<script src="{% static 'js/jquery.form.min.js' %}"></script>
+<script type="text/javascript">
+window.onload = function (){
+        var tag_on = document.getElementsByName("tag_on");
+        var oDiv = document.getElementById("ydxbd");
+        if(tag_on.length > 0){
+            oDiv.style.display = "block";
+        }
+    };
+
+function tagShow() {
+    var oDiv = document.getElementById("ydxbd");
+    if (oDiv.style.display == 'none'){
+        oDiv.style.display = "block";
+    }else{
+        oDiv.style.display = "none";
+    }
+}  //onload;
+
+
+
+$(document).ready(function(){
+    var options = {
+        ele: $('#asset_list_table'),
+        columnDefs: [
+            {targets: 1, createdCell: function (td, cellData, rowData) {
+                var detail_btn = '<a href="{% url "assets:asset-detail" pk=99991937 %}">' + cellData + '</a>';
+                $(td).html(detail_btn.replace('99991937', rowData.id));
+            }},
+            {targets: 7, createdCell: function (td, cellData) {
+                if (!cellData) {
+                    $(td).html('<i class="fa fa-times text-danger"></i>')
+                } else {
+                    $(td).html('<i class="fa fa-check text-navy"></i>')
+                }
+            }},
+            {targets: 8, createdCell: function (td, cellData) {
+                if (cellData == 'Unknown'){
+                    $(td).html('<i class="fa fa-circle text-warning"></i>')
+                } else if (!cellData) {
+                    $(td).html('<i class="fa fa-circle text-danger"></i>')
+                } else {
+                    $(td).html('<i class="fa fa-circle text-navy"></i>')
+                }
+            }},
+            {targets: 9, createdCell: function (td, cellData, rowData) {
+                var update_btn = '<a href="{% url "assets:asset-update" pk=99991937 %}" class="btn btn-xs btn-info">{% trans "Update" %}</a>'.replace('99991937', cellData);
+                var del_btn = '<a class="btn btn-xs btn-danger m-l-xs btn_asset_delete" data-uid="99991937">{% trans "Delete" %}</a>'.replace('99991937', cellData);
+                $(td).html(update_btn + del_btn)
+            }}
+        ],
+        ajax_url: '{% url "api-assets:asset-list" %}',
+        columns: [{data: "id"}, {data: "hostname" }, {data: "ip" }, {data: "port" },
+            {data: "get_type_display" }, {data: "get_env_display"}, {data: "hardware"},
+            {data: "is_active" }, {data: "is_online"}, {data: "id" }],
+        op_html: $('#actions').html()
+    };
+    var table = jumpserver.initDataTable(options);
+
+    $('.btn_export').click(function () {
+        var assets = [];
+        var rows = table.rows('.selected').data();
+        $.each(rows, function (index, obj) {
+            assets.push(obj.id)
+        });
+        console.log(assets);
+        $.ajax({
+            url: "{% url "assets:asset-export" %}",
+            method: 'POST',
+            data: JSON.stringify({assets_id: assets}),
+            dataType: "json",
+            success: function (data, textStatus) {
+                window.open(data.redirect)
+            },
+            error: function () {
+                toastr.error('Export failed');
+            }
+        })
+    });
+     $('#btn_asset_import').click(function() {
+        var $form = $('#fm_asset_import');
+        $form.find('.help-block').remove();
+        function success (data) {
+            if (data.valid === false) {
+                $('<span />', {class: 'help-block text-danger'}).html(data.msg).insertAfter($('#id_assets'));
+            } else {
+                $('#id_created').html(data.created_info);
+                $('#id_created_detail').html(data.created.join(', '));
+                $('#id_updated').html(data.updated_info);
+                $('#id_updated_detail').html(data.updated.join(', '));
+                $('#id_failed').html(data.failed_info);
+                $('#id_failed_detail').html(data.failed.join(', '));
+                var $data_table = $('#asset_list_table').DataTable();
+                $data_table.ajax.reload();
+            }
+        }
+        $form.ajaxSubmit({success: success});
+    })
+})
+
+.on('click', '.btn_asset_delete', function () {
+    var $this = $(this);
+    var $data_table = $("#asset_list_table").DataTable();
+    var name = $(this).closest("tr").find(":nth-child(2)").children('a').html();
+    var uid = $this.data('uid');
+    var the_url = '{% url "api-assets:asset-detail" pk=99991937 %}'.replace('99991937', uid);
+    console.log(the_url);
+    objectDelete($this, name, the_url);
+    setTimeout( function () {
+        $data_table.ajax.reload();
+    }, 3000);
+})
+.on('click', '#btn_bulk_update', function () {
+    var action = $('#slct_bulk_update').val();
+    var $data_table = $('#asset_list_table').DataTable();
+    var id_list = [];
+    $data_table.rows({selected: true}).every(function(){
+        id_list.push(this.data().id);
+    });
+    if (id_list.length == 0) {
+        return false;
+    }
+    var the_url = "{% url 'api-assets:asset-list' %}";
+
+    function doDeactive() {
+        var body = $.each(id_list, function(index, asset_object) {
+            asset_object['is_active'] = false;
+        });
+        APIUpdateAttr({url: the_url, method: 'PATCH', body: JSON.stringify(body)});
+        $data_table.ajax.reload();
+        jumpserver.checked = false;
+    }
+    function doActive() {
+        var body = $.each(id_list, function(index, asset_object) {
+            asset_object['is_active'] = true;
+        });
+        APIUpdateAttr({url: the_url, method: 'PATCH', body: JSON.stringify(body)});
+        $data_table.ajax.reload();
+        jumpserver.checked = false;
+    }
+    function doDelete() {
+        swal({
+            title: "{% trans 'Are you sure?' %}",
+            text: "{% trans 'This will delete the selected assets !!!' %}",
+            type: "warning",
+            showCancelButton: true,
+            confirmButtonColor: "#DD6B55",
+            confirmButtonText: "{% trans 'Confirm' %}",
+            closeOnConfirm: false
+        }, function() {
+            var success = function() {
+                var msg = "{% trans 'Asset Deleted.' %}";
+                swal("{% trans 'Asset Delete' %}", msg, "success");
+                $('#asset_list_table').DataTable().ajax.reload();
+            };
+            var fail = function() {
+                var msg = "{% trans 'Asset Deleting failed.' %}";
+                swal("{% trans 'Asset Delete' %}", msg, "error");
+            };
+            var url_delete = the_url + '?id__in=' + JSON.stringify(plain_id_list);
+            APIUpdateAttr({url: url_delete, method: 'DELETE', success: success, error: fail});
+            $data_table.ajax.reload();
+            jumpserver.checked = false;
+        });
+    }
+    function doUpdate() {
+        var id_list_string = id_list.join(',');
+        var url = "{% url 'assets:asset-bulk-update' %}?assets_id=" + id_list_string;
+        location.href = url
+    }
+    switch(action) {
+        case 'deactive':
+            doDeactive();
+            break;
+        case 'delete':
+            doDelete();
+            break;
+        case 'update':
+            doUpdate();
+            break;
+        case 'active':
+            doActive();
+            break;
+        default:
+            break;
+    }
+});
+{##}
+{#.on('click', '#btn_asset_bulk_update', function () {#}
+{#    var json_data = $("#fm_asset_bulk_update").serializeObject();#}
+{#    var body = {};#}
+{#    body.enable_otp = (json_data.enable_otp === 'on')? true: false;#}
+{#    if (json_data.type != '') {#}
+{#        body.type = json_data.type;#}
+{#    }#}
+{#    if (json_data.groups != undefined) {#}
+{#        body.groups = json_data.groups;#}
+{#    }#}
+{#    if (typeof body.groups === 'string') {#}
+{#        body.groups = [parseInt(body.groups)]#}
+{#    } else if(typeof body.groups === 'array') {#}
+{#        var new_groups = body.groups.map(Number);#}
+{#        body.groups = new_groups;#}
+{#    }#}
+{##}
+{#    if (json_data.system_users != undefined) {#}
+{#        body.system_users = json_data.system_users;#}
+{#    }#}
+{#    if (typeof body.system_users === 'string') {#}
+{#        body.system_users = [parseInt(body.system_users)]#}
+{#    } else if(typeof body.system_users === 'array') {#}
+{#        var new_users = body.system_users.map(Number);#}
+{#        body.system_users = new_users;#}
+{#    }#}
+{##}
+{#    if (json_data.tags != undefined) {#}
+{#        body.tags = json_data.tags;#}
+{#    }#}
+{#    if (typeof body.tags == 'string') {#}
+{#        body.tags = [parseInt(body.tags)];#}
+{#    } else if (typeof body.tags === 'array') {#}
+{#        var new_tags = body.tags.map(Number);#}
+{#        body.tags = new_tags;#}
+{#    }#}
+{##}
+{#    var $data_table = $('#asset_list_table').DataTable();#}
+{#    var post_list = [];#}
+{#    $data_table.rows({selected: true}).every(function(){#}
+{#        var content = Object.assign({id: this.data().id}, body);#}
+{#        post_list.push(content);#}
+{#    });#}
+{#    if (post_list === []) {#}
+{#        return false#}
+{#    }#}
+{#    var the_url = "{% url 'api-assets:asset-list' %}";#}
+{#    var success = function() {#}
+{#        var msg = "{% trans 'The selected assets has been updated successfully.' %}";#}
+{#        swal("{% trans 'Asset Updated' %}", msg, "success");#}
+{#        $('#asset_list_table').DataTable().ajax.reload();#}
+{#        jumpserver.checked = false;#}
+{#    };#}
+{#    console.log(JSON.stringify(post_list));#}
+{#    console.log(the_url);#}
+{#    APIUpdateAttr({url: the_url, method: 'PATCH', body: JSON.stringify(post_list), success: success});#}
+{#    $('#asset_bulk_update_modal').modal('hide');#}
+{#})#}
+
+</script>
+{% endblock %}
--- a/apps/assets/templates/assets/asset_modal_list.html
+++ b/apps/assets/templates/assets/asset_modal_list.html
@@ -0,0 +1,127 @@
+
+<div class="modal-header">
+    <button type="button" class="close" data-dismiss="modal" aria-hidden="true">×</button>
+    <h4 class="modal-title" id="myModalLabel">分配/回收资产</h4>
+</div>
+
+<div class="modal-body" style="padding-bottom: 0px;">
+    <table aria-describedby="editable_info" role="grid" class="table table-striped table-bordered table-hover  dataTable" id="editable">
+        <thead>
+            <tr>
+                <th class="text-center" style="background-color:white">
+                    <input type="checkbox" id="check_all" onclick="checkAll()">
+                </th>
+                <th id="th_no">id</th>
+                <th>资产名称</th>
+                <th>IP</th>
+                <th>类型</th>
+            </tr>
+        </thead>
+        <tbody>
+        {% for asset in assets %}
+            {% if asset.id in all_assets %}
+            <tr name="oAssets" class="odd selected text-center">
+                <td class="text-center" ><input type="checkbox" name="checked" value="{{ asset.id }}" checked="checked"></td>
+            {% else %}
+            <tr name="oAssets">
+                <td class="text-center"><input type="checkbox" name="checked" value="{{ asset.id }}" ></td>
+            {% endif %}
+                <td class="text-center">{{ asset.id }}</td>
+                <td class="text-center">{{ asset.hostname }}</td>
+                <td class="text-center">{{ asset.ip }}</td>
+                <td class="text-center">{{ asset.env }}-{{ asset.type }}</td>
+            </tr>
+        {% endfor %}
+        </tbody>
+    </table>
+</div>
+
+<div class="modal-footer">
+    <button type="button" class="btn btn-default" id="close-btn">取消</button>
+    <button type="button" class="btn btn-primary" id="save-btn">保存</button>
+</div>
+
+<script type="text/javascript">
+$(document).ready(function(){
+    var table = $('#editable').DataTable({
+        "aLengthMenu": [[10, 25, 50, -1], ["10", "25", "50", "all"]],
+        "iDisplayLength":25,
+        "aaSorting": [[2, "asc"]],
+        "aoColumnDefs": [ { "bSortable": false, "aTargets": [ 0 ] }],
+        "bAutoWidth": false,
+        "language": {
+            "url": "/static/js/plugins/dataTables/i18n/zh-hans.json"
+        },
+        columns: [
+            {data: "checkbox"},
+            {data: "id"},
+            {data: "hostname"},
+            {data: "ip"},
+            {data: "type"}
+        ]
+    });
+    //将ID列隐藏
+    table.column('1').visible(false);
+
+    $('#editable tbody').on( 'click', 'tr', function () {
+        //alert($(this).hasClass('selected'));
+        if($(this).hasClass('selected')){
+            $(this).removeClass('selected');
+            this.children[0].children[0].checked=0;
+        }else{
+            $(this).addClass('selected');
+            this.children[0].children[0].checked=1;
+        }
+    });
+
+    $('#close-btn').on('click',function(){
+        $('#modal').modal('hide');
+    });
+    var size_name = document.getElementById('asset_on_count').innerText;
+    $('#save-btn').on('click',function(){
+        //alert( table.rows('.selected').data().length +' row(s) selected' );
+        var d = table.rows('.selected').data();
+        var size = d.length;
+        var re = /\d+/;
+        document.getElementById('add_asset').value = size;
+        var str= size_name;
+        var re=/\d+/g;
+        document.getElementById('asset_on_count').innerText = str.replace(re, size);
+        var column2 = table.rows('.selected').data();
+        $("#asset_sed").find("input[name='assets']").remove();
+        $("#asset_sed").find("button[name='asset_hostname']").remove();
+        for(var i=0;i<column2.length;i++){
+            column2[i].checkbox='<input name="checked" value="1" checked="" type="checkbox">';
+            var value = column2[i].id;
+            var ip = column2[i].ip;
+            var hostname = column2[i].hostname;
+            $("#asset_sed").append("<input  type='hidden' name='assets' value='"+value+"'>");
+            $("#asset_on_p").append("<button name='asset_hostname' title='"+ip+"' type='button' class='btn btn-default btn-xs ss'>"+hostname+"</button> ");
+        }
+        $('#modal').modal('hide');
+    });
+
+}); //$(document).ready
+
+var bCheck = 1;
+function checkAll(){
+    if(bCheck){
+        $("tr[name='oAssets']").each(function(){
+            oCheckbox = this.children[0].children[0];
+            $(this).toggleClass('selected',true);
+            oCheckbox.checked=1;
+        });
+        document.getElementById('check_all').checked=1;
+        bCheck = 0;
+    }else{
+        $("tr[name='oAssets']").each(function(){
+            oCheckbox = this.children[0].children[0];
+            $(this).toggleClass('selected',false);
+            oCheckbox.checked=0;
+        });
+        document.getElementById('check_all').checked=0;
+        bCheck = 1;
+    }
+}
+
+</script>
--- a/apps/assets/templates/assets/asset_update.html
+++ b/apps/assets/templates/assets/asset_update.html
@@ -0,0 +1,73 @@
+{% extends '_base_create_update.html' %}
+{% load static %}
+{% load bootstrap3 %}
+{% load i18n %}
+
+{% block custom_head_css_js_create %}
+    <link href="{% static "css/plugins/inputTags.css" %}" rel="stylesheet">
+    <script src="{% static "js/plugins/inputTags.jquery.min.js" %}"></script>
+{% endblock %}
+
+{% block form %}
+    <form action="" method="post" class="form-horizontal">
+    {% if form.no_field_errors %}
+         <div class="alert alert-danger">
+             {{ form.non_field_errors }}
+         </div>
+    {% endif %}
+    {% csrf_token %}
+    <h3>{% trans 'Basic' %}</h3>
+    {% bootstrap_field form.hostname layout="horizontal" %}
+    {% bootstrap_field form.ip layout="horizontal" %}
+    {% bootstrap_field form.public_ip layout="horizontal" %}
+    {% bootstrap_field form.port layout="horizontal" %}
+    {% bootstrap_field form.type layout="horizontal" %}
+
+    <div class="hr-line-dashed"></div>
+    <h3>{% trans 'Group' %}</h3>
+    {% bootstrap_field form.idc layout="horizontal" %}
+    {% bootstrap_field form.groups layout="horizontal" %}
+
+    <div class="hr-line-dashed"></div>
+    <h3>{% trans 'Asset user' %}</h3>
+    {% bootstrap_field form.admin_user layout="horizontal" %}
+
+    <div class="hr-line-dashed"></div>
+    <h3>{% trans 'Configuration' %}</h3>
+    {% bootstrap_field form.number layout="horizontal" %}
+    {% bootstrap_field form.remote_card_ip layout="horizontal" %}
+
+    <div class="hr-line-dashed"></div>
+    <h3>{% trans 'Location' %}</h3>
+    {% bootstrap_field form.cabinet_no layout="horizontal" %}
+    {% bootstrap_field form.cabinet_pos layout="horizontal" %}
+
+    <div class="hr-line-dashed"></div>
+    <h3>{% trans 'Other' %}</h3>
+    {% bootstrap_field form.status layout="horizontal" %}
+    {% bootstrap_field form.env layout="horizontal" %}
+    {% bootstrap_field form.comment layout="horizontal" %}
+    {% bootstrap_field form.is_active layout="horizontal" %}
+
+    <div class="hr-line-dashed"></div>
+    <div class="form-group">
+        <div class="col-sm-4 col-sm-offset-2">
+            <button class="btn btn-white" type="reset">{% trans 'Reset' %}</button>
+            <button id="submit_button" class="btn btn-primary" type="submit">{% trans 'Submit' %}</button>
+        </div>
+    </div>
+
+</form>
+{% endblock %}
+
+{% block custom_foot_js %}
+    <script>
+        $(document).ready(function () {
+            $('.select2').select2();
+            $("#tags").select2({
+                tags: true,
+                maximumSelectionLength: 8  //最多能够选择的个数
+            });
+        })
+    </script>
+{% endblock %}
--- a/apps/assets/templates/assets/delete_confirm.html
+++ b/apps/assets/templates/assets/delete_confirm.html
@@ -0,0 +1,15 @@
+{% load i18n %}
+<!DOCTYPE html>
+<html lang="en">
+<head>
+    <meta charset="UTF-8">
+    <title>{% trans 'Confirm delete' %}</title>
+</head>
+<body>
+<form action="" method="post">
+    {% csrf_token %}
+    <p>{% trans 'Are you sure delete' %} <b>{{ object.name }} </b> ?</p>
+    <input type="submit" value="Confirm" />
+</form>
+</body>
+</html>
--- a/apps/assets/templates/assets/idc_assets.html
+++ b/apps/assets/templates/assets/idc_assets.html
@@ -0,0 +1,364 @@
+{% extends 'base.html' %}
+{% load static %}
+{% load i18n %}
+
+{% block custom_head_css_js %}
+    <link href="{% static "css/plugins/select2/select2.min.css" %}" rel="stylesheet">
+    <script src="{% static "js/plugins/select2/select2.full.min.js" %}"></script>
+	<style type="text/css">
+
+	</style>
+{% endblock %}
+{% block content %}
+    <div class="wrapper wrapper-content animated fadeInRight">
+        <div class="row">
+            <div class="col-sm-12">
+                <div class="ibox float-e-margins">
+                    <div class="panel-options">
+                        <ul class="nav nav-tabs">
+                            <li>
+                                <a href="{% url 'assets:idc-detail' pk=idc.id %}" class="text-center"><i class="fa fa-laptop"></i> {% trans 'Detail' %} </a>
+                            </li>
+                            <li class="active"><a href="{% url 'assets:idc-assets' pk=idc.id %}" class="text-center">
+                                <i class="fa fa-bar-chart-o"></i> {% trans 'IDC assets' %}</a>
+                            </li>
+                        </ul>
+                    </div>
+                    <div class="tab-content">
+                        <div class="col-sm-7" style="padding-left: 0;">
+                            <div class="ibox float-e-margins">
+                                <div class="ibox-title">
+                                    <span style="float: left">{% trans 'IDC assets' %} <b>{{ idc.name }} </b><span class="badge"></span></span>
+                                    <div class="ibox-tools">
+                                        <a class="collapse-link">
+                                            <i class="fa fa-chevron-up"></i>
+                                        </a>
+                                        <a class="dropdown-toggle" data-toggle="dropdown" href="#">
+                                            <i class="fa fa-wrench"></i>
+                                        </a>
+                                        <ul class="dropdown-menu dropdown-user">
+                                        </ul>
+                                        <a class="close-link">
+                                            <i class="fa fa-times"></i>
+                                        </a>
+                                    </div>
+                                </div>
+
+                                <div class="ibox-content">
+                                    <table class="table table-striped table-bordered table-hover " id="idc_assets_table" >
+                                        <thead>
+                                            <tr>
+                                                <th class="text-center">
+                                                    <input type="checkbox" id="check_all" class="ipt_check_all" >
+                                                </th>
+                                                <th>{% trans 'Hostname' %}</th>
+                                                <th>{% trans 'IP' %}</th>
+                                                <th>{% trans 'Port' %}</th>
+                                                <th>{% trans 'Type' %}</th>
+                                                <th>{% trans 'Valid' %}</th>
+                                            </tr>
+                                        </thead>
+                                        <tbody>
+                                        </tbody>
+                                    </table>
+
+	                                  <div id="actions" class="hide">
+									                      <div class="input-group">
+									                          <select class="form-control m-b" style="width: auto" id="slct_bulk_update">
+									                              <option value="delete">{% trans 'Remove selected' %}</option>
+									                          </select>
+									                          <div class="input-group-btn pull-left" style="padding-left: 5px;">
+									                              <button id='btn_bulk_update' style="height: 32px;"  class="btn btn-sm btn-warning">
+									                               {% trans 'Submit' %}
+									                              </button>
+									                          </div>
+									                      </div>
+									                  </div>
+                                </div>
+                            </div>
+                        </div>
+                        <div class="col-sm-5" style="padding-left: 0;padding-right: 0">
+                            <div class="panel panel-primary">
+                                <div class="panel-heading">
+                                    <i class="fa fa-info-circle"></i> {% trans 'Add assets to' %} {{ idc.name }}
+                                </div>
+                                <div class="panel-body">
+                                    <table class="table">
+                                        <tbody>
+                                        <form>
+                                            <tr class="no-borders-tr">
+                                                <td colspan="2">
+                                                    <select data-placeholder="{% trans 'Select asset' %}" class="select2" style="width: 100%" multiple="" tabindex="4">
+                                                        {% for asset in assets_remain %}
+                                                            <option value="{{ asset.id }}" id="opt_{{ asset.id }}">{{ asset.ip}}:{{ asset.port }}</option>
+                                                        {% endfor %}
+                                                    </select>
+                                                </td>
+                                            </tr>
+                                            <tr class="no-borders-tr">
+                                                <td colspan="2">
+                                                    <button type="button" class="btn btn-primary btn-sm btn-asset-attach">{% trans 'Confirm' %}</button>
+                                                </td>
+                                            </tr>
+                                        </form>
+                                        </tbody>
+                                    </table>
+                                </div>
+                            </div>
+                        </div>
+                    </div>
+                </div>
+            </div>
+        </div>
+    </div>
+{% endblock %}
+{% block custom_foot_js %}
+<script src="{% static 'js/jquery.form.min.js' %}"></script>
+<script>
+
+jumpserver.assets_selected = {};
+
+Array.prototype.remove = function(val) {
+	var index = this.indexOf(val);
+		if (index > -1) {
+		this.splice(index, 1);
+	}
+};
+
+function updateIDCAssets(assets) {
+    var the_url = "{% url 'api-assets:idc-update-assets' pk=idc.id %}";
+    var body = {
+        assets: Object.assign([], assets)
+    };
+	var $data_table = $("#idc_assets_table").DataTable();
+    var success = function(data) {
+        $('.select2-selection__rendered').empty();
+        $.map(jumpserver.assets_selected, function(asset_ip, index) {
+	        $('#opt_' + index).remove();
+			$data_table.ajax.reload();
+        });
+        jumpserver.groups_selected = {};
+    };
+    APIUpdateAttr({
+        url: the_url,
+        body: JSON.stringify(body),
+	    method: 'PUT',
+        success: success
+    });
+}
+
+function deleteIDCAssets(assets) {
+	var the_url = "{% url 'api-assets:idc-update-assets' pk=idc.id %}";
+    var body = {
+        assets: Object.assign([], assets)
+    };
+	var $data_table = $("#idc_assets_table").DataTable();
+	var success = function(data) {
+		$data_table.ajax.reload();
+    };
+    APIUpdateAttr({
+        url: the_url,
+        body: JSON.stringify(body),
+	    method: 'PUT',
+        success: success
+    });
+}
+
+$(document).ready(function () {
+	$('.select2').select2()
+	.on("select2:select", function (evt) {
+		var data = evt.params.data;
+		jumpserver.assets_selected[data.id] = data.text;
+	})
+	.on('select2:unselect', function(evt) {
+		var data = evt.params.data;
+		delete jumpserver.assets_selected[data.id];
+	});
+	var options = {
+		ele: $('#idc_assets_table'),
+		buttons: [],
+		order: [],
+		columnDefs: [
+			{targets: 1, createdCell: function (td, cellData, rowData) {
+				var detail_btn = '<a href="{% url "assets:asset-detail" pk=99991937 %}" data-aid="'+rowData.id+'">' + cellData + '</a>';
+				$(td).html(detail_btn.replace('99991937', rowData.id));
+			}},
+			{targets: 5, createdCell: function (td, cellData) {
+				if (!cellData) {
+					$(td).html('<i class="fa fa-times text-danger"></i>')
+				} else {
+					$(td).html('<i class="fa fa-check text-navy"></i>')
+				}
+			}}],
+		ajax_url: '{% url "api-assets:asset-list" %}?idc_id={{ idc.id }}',
+		columns: [{data: function(){return ""}}, {data: "hostname" }, {data: "ip" }, {data: "port" },
+			{data: "type" }, {data: "is_active" }],
+		op_html: $('#actions').html()
+	};
+	jumpserver.initDataTable(options);
+
+})
+
+.on('click', '.btn-asset-attach', function () {
+	if (Object.keys(jumpserver.assets_selected).length === 0) {
+		return false;
+	}
+	var assets=[];
+	var $data_table = $("#idc_assets_table").DataTable();
+	$.ajax({
+		url: '{% url "api-assets:asset-list" %}',
+		method: 'GET',
+		data: {"idc_id": {{ idc.id }}},
+		dataType: 'json',
+		success: function (result) {
+			for(var i in result){
+				if (!isNaN(parseInt(result[i]['id']))) {
+					assets.push(parseInt(result[i]['id']))
+				}
+			}
+			$.map(jumpserver.assets_selected, function(value, index) {
+				assets.push(parseInt(index));
+			});
+			updateIDCAssets(assets);
+
+		}
+	});
+})
+
+.on('click', '#btn_bulk_update', function () {
+	var action = $("#slct_bulk_update").val();
+	var $data_table = $("#idc_assets_table").DataTable();
+	var id_list = [];
+	var plain_id_list = [];
+	var assets = [];
+	$data_table.rows({selected: true}).every(function(){
+        id_list.push({id: this.data().id});
+        plain_id_list.push(this.data().id);
+    });
+    if (id_list === []) {
+        return false;
+    }
+    $.ajax({
+    	url: '{% url "api-assets:asset-list" %}',
+	    data: {"idc_id": {{ idc.id }}},
+	    dataType: 'json',
+	    method: 'GET',
+	    success: function (result) {
+		    for (var i in result) {
+		    	if (!isNaN(result[i]['id'])) {
+		    		assets.push(result[i]['id']);
+			    }
+		    }
+		    for (var j in plain_id_list) {
+		    	assets.remove(plain_id_list[j])
+		    }
+		    function doDelete() {
+				    swal({
+		                title: "{% trans 'Are you sure?' %}",
+		                text: "{% trans 'This will delete the selected assets !!!' %}",
+		                type: "warning",
+		                showCancelButton: true,
+		                confirmButtonColor: "#DD6B55",
+		                confirmButtonText: "{% trans 'Confirm' %}",
+		                closeOnConfirm: false
+		            }, function() {
+		                var success = function() {
+		                    var msg = "{% trans 'Asset Deleted.' %}";
+		                    swal("{% trans 'Asset Delete' %}", msg, "success");
+		                    $('#idc_assets_table').DataTable().ajax.reload();
+		                };
+		                var fail = function() {
+		                    var msg = "{% trans 'Asset Deleting failed.' %}";
+		                    swal("{% trans 'Asset Delete' %}", msg, "error");
+		                };
+		                var url_delete = "{% url 'api-assets:idc-update-assets' pk=idc.id %}";
+		                var body = {
+				            assets: Object.assign([], assets)
+				        };
+		            APIUpdateAttr({url: url_delete, body: JSON.stringify(body),  method: 'PUT', success: success, error: fail});
+		            jumpserver.checked = false;
+                });
+		    }
+		    function doUpdate() {
+				$('#asset_bulk_update_modal').modal('show');
+		    }
+		    switch (action) {
+		        case 'delete':
+		            doDelete();
+		            break;
+		        case 'update':
+		            doUpdate();
+		            break;
+		        default:
+		            break;
+		    }
+
+	    }
+    });
+})
+
+.on('click', '#btn_asset_bulk_update', function () {
+	var json_data = $("#fm_asset_bulk_update").serializeObject();
+	var body = {};
+    body.enable_otp = (json_data.enable_otp === 'on')? true: false;
+    if (json_data.type != '') {
+        body.type = json_data.type;
+    }
+
+    if (json_data.groups != undefined) {
+        body.groups = json_data.groups;
+    }
+    if (typeof body.groups === 'string') {
+        body.groups = [parseInt(body.groups)]
+    } else if(typeof body.groups === 'array') {
+        var new_groups = body.groups.map(Number);
+        body.groups = new_groups;
+    }
+
+    if (json_data.users != undefined) {
+    	body.users = json_data.users;
+    }
+    if (typeof body.users === 'string') {
+    	body.users = [parseInt(body.users)]
+    } else if(typeof body.users === 'array') {
+    	var new_users = body.users.map(Number);
+    	body.users = new_users;
+    }
+
+    if (json_data.tags != undefined) {
+    	body.tags = json_data.tags;
+    }
+    if (typeof body.tags == 'string') {
+    	body.tags = [parseInt(body.tags)];
+    } else if (typeof body.tags === 'array') {
+    	var new_tags = body.tags.map(Number);
+    	body.tags = new_tags;
+    }
+
+    var $data_table = $('#asset_list_table').DataTable();
+    var post_list = [];
+    $data_table.rows({selected: true}).every(function(){
+        var content = Object.assign({id: this.data().id}, body);
+        post_list.push(content);
+    });
+    if (post_list === []) {
+        return false
+    }
+    var the_url = "{% url 'api-assets:asset-list' %}";
+    var success = function() {
+        var msg = "{% trans 'The selected assets has been updated successfully.' %}";
+        swal("{% trans 'Asset Updated' %}", msg, "success");
+        $('#asset_list_table').DataTable().ajax.reload();
+        jumpserver.checked = false;
+    };
+    APIUpdateAttr({url: the_url, method: 'PATCH', body: JSON.stringify(post_list), success: success});
+    $('#asset_bulk_update_modal').modal('hide');
+});
+
+
+
+
+
+
+</script>
+{% endblock %}
--- a/apps/assets/templates/assets/idc_create_update.html
+++ b/apps/assets/templates/assets/idc_create_update.html
@@ -0,0 +1,73 @@
+{% extends 'base.html' %}
+{% load i18n %}
+{% load static %}
+{% load bootstrap3 %}
+{% block custom_head_css_js %}
+    <link href="{% static "css/plugins/select2/select2.min.css" %}" rel="stylesheet">
+    <script src="{% static "js/plugins/select2/select2.full.min.js" %}"></script>
+{% endblock %}
+{% block content %}
+<div class="wrapper wrapper-content animated fadeInRight">
+    <div class="row">
+        <div class="col-sm-10">
+            <div class="ibox float-e-margins">
+                <div id="ibox-content" class="ibox-title">
+                    <h5> {{ action }}</h5>
+                    <div class="ibox-tools">
+                        <a class="collapse-link">
+                            <i class="fa fa-chevron-up"></i>
+                        </a>
+                        <a class="dropdown-toggle" data-toggle="dropdown" href="#">
+                            <i class="fa fa-wrench"></i>
+                        </a>
+                        <a class="close-link">
+                            <i class="fa fa-times"></i>
+                        </a>
+                    </div>
+                </div>
+
+                <div class="ibox-content">
+                    <div class="panel blank-panel">
+                        <div class="panel-body">
+                            <div class="tab-content">
+                                <div id="tab-1" class="ibox float-e-margins tab-pane active"></div>
+                                    <form id="IDCForm" method="post" class="form-horizontal">
+                                        {% csrf_token %}
+                                        <h3 class="widget-head-color-box">基本信息</h3>
+                                        {% bootstrap_field form.name layout="horizontal" %}
+                                        {% bootstrap_field form.address layout="horizontal" %}
+                                        {% bootstrap_field form.contact layout="horizontal" %}
+                                        {% bootstrap_field form.phone layout="horizontal" %}
+
+                                        <div class="hr-line-dashed"></div>
+                                        <h3 class="widget-head-color-box">IP段</h3>
+                                        {% bootstrap_field form.operator layout="horizontal" %}
+                                        {% bootstrap_field form.intranet layout="horizontal" %}
+                                        {% bootstrap_field form.extranet layout="horizontal" %}
+
+                                        <div class="hr-line-dashed"></div>
+                                        <div class="form-group">
+                                            <div class="col-sm-4 col-sm-offset-2">
+                                                <button class="btn btn-default" type="reset"> {% trans 'Reset' %}</button>
+                                                <button id="submit_button" class="btn btn-primary" type="submit">{% trans 'Submit' %}</button>
+                                            </div>
+                                        </div>
+                                    </form>
+                                </div>
+                            </div>
+                        </div>
+                    </div>
+                </div>
+            </div>
+        </div>
+    </div>
+</div>
+{% endblock %}
+
+{% block custom_foot_js %}
+    <script>
+        $(document).ready(function () {
+            $('.select2').select2();
+        })
+    </script>
+{% endblock %}
--- a/apps/assets/templates/assets/idc_detail.html
+++ b/apps/assets/templates/assets/idc_detail.html
@@ -0,0 +1,156 @@
+{% extends 'base.html' %}
+{% load static %}
+{% load i18n %}
+
+{% block custom_head_css_js %}
+    <link href="{% static "css/plugins/select2/select2.min.css" %}" rel="stylesheet">
+    <script src="{% static "js/plugins/select2/select2.full.min.js" %}"></script>
+{% endblock %}
+{% block content %}
+    <div class="wrapper wrapper-content animated fadeInRight">
+        <div class="row">
+            <div class="col-sm-12">
+                <div class="ibox float-e-margins">
+                    <div class="panel-options">
+                        <ul class="nav nav-tabs">
+                            <li class="active">
+                                <a href="{% url 'assets:idc-detail' pk=idc.id %}" class="text-center"><i class="fa fa-laptop"></i> {% trans 'Detail' %} </a>
+                            </li>
+                            <li>
+                                <a href="{% url 'assets:idc-assets' pk=idc.id %}" class="text-center">
+                                <i class="fa fa-bar-chart-o"></i> {% trans 'IDC assets' %}
+                                </a>
+                            </li>
+                            <li class="pull-right">
+                                <a class="btn btn-outline btn-default" href="{% url 'assets:idc-update' pk=idc.id %}"><i class="fa fa-edit"></i>Update</a>
+                            </li>
+                            <li class="pull-right">
+                                <a class="btn btn-outline btn-danger btn-delete-idc">
+                                    <i class="fa fa-edit"></i>Delete
+                                </a>
+                            </li>
+                        </ul>
+                    </div>
+                    <div class="tab-content">
+                        <div class="col-sm-7" style="padding-left: 0;">
+                            <div class="ibox float-e-margins">
+                                <div class="ibox-title">
+                                    <span class="label"><b>{{ idc.name }}</b></span>
+                                    <div class="ibox-tools">
+                                        <a class="collapse-link">
+                                            <i class="fa fa-chevron-up"></i>
+                                        </a>
+                                        <a class="dropdown-toggle" data-toggle="dropdown" href="#">
+                                            <i class="fa fa-wrench"></i>
+                                        </a>
+                                        <ul class="dropdown-menu dropdown-user">
+                                        </ul>
+                                        <a class="close-link">
+                                            <i class="fa fa-times"></i>
+                                        </a>
+                                    </div>
+                                </div>
+                                <div class="ibox-content">
+                                    <table class="table">
+                                        <tbody>
+                                        <tr class="no-borders-tr">
+                                            <td width="20%">{% trans 'Name' %}:</td>
+                                            <td><b>{{ idc.name }}</b></td>
+                                        </tr>
+                                        <tr>
+                                            <td>{% trans 'Bandwidth' %}:</td>
+                                            <td><b>{{ idc.bandwidth }}</b></td>
+                                        </tr>
+                                        <tr>
+                                            <td>{% trans 'Contact' %}:</td>
+                                            <td><b>{{ idc.contact }}</b></td>
+                                        </tr>
+                                        <tr>
+                                            <td>{% trans 'Phone' %}:</td>
+                                            <td><b>{{ idc.phone }}</b></td>
+                                        </tr>
+                                        <tr>
+                                            <td>{% trans 'Address' %}:</td>
+                                            <td><b>{{ idc.address }}</b></td>
+                                        </tr>
+                                        <tr>
+                                            <td>{% trans 'Intranet' %}:</td>
+                                            <td><b>{{ idc.Intranet }}</b></td>
+                                        </tr>
+                                        <tr>
+                                            <td>{% trans 'Extranet' %}:</td>
+                                            <td><b>{{ idc.extranet }}</b></td>
+                                        </tr>
+                                        <tr>
+                                            <td>{% trans 'Operator' %}:</td>
+                                            <td><b>{{ idc.operator }}</b></td>
+                                        </tr>
+                                        <tr>
+                                            <td>{% trans 'Date created' %}:</td>
+                                            <td><b>{{ system_user.date_created }}</b></td>
+                                        </tr>
+                                        <tr>
+                                            <td>{% trans 'Created by' %}:</td>
+                                            <td><b>{{ asset_group.created_by  }}</b></td>
+                                        </tr>
+                                        <tr>
+                                            <td>{% trans 'Comment' %}:</td>
+                                            <td><b>{{ system_user.comment }}</b></td>
+                                        </tr>
+                                        </tbody>
+                                    </table>
+                                </div>
+                            </div>
+                        </div>
+                    </div>
+                </div>
+            </div>
+        </div>
+    </div>
+
+{% endblock %}
+{% block custom_foot_js %}
+<script>
+function idcDelete(name, url) {
+    function doDelete() {
+        var body = {};
+        var success = function() {
+            swal('Deleted!', "[ "+name+"]"+" has been deleted ", "success");
+	        window.location.href="{% url 'assets:idc-list' %}";
+        };
+        var fail = function() {
+            swal("Failed", "Delete"+"[ "+name+" ]"+"failed", "error");
+        };
+        APIUpdateAttr({
+            url: url,
+            body: JSON.stringify(body),
+            method: 'DELETE',
+            success: success,
+            error: fail
+        });
+    }
+    swal({
+        title: 'Are you sure delete ?',
+        text: " [" + name + "] ",
+        type: "warning",
+        showCancelButton: true,
+        cancelButtonText: 'Cancel',
+        confirmButtonColor: "#DD6B55",
+        confirmButtonText: 'Confirm',
+        closeOnConfirm: false
+    }, function () {
+        doDelete()
+    });
+}
+
+$(document).ready(function () {
+	$('.select2').select2();
+})
+.on('click', '.btn-delete-idc', function () {
+	var name = $('.idc-details > tbody > tr').attr("data-name");
+	var id = {{ idc.id }};
+	var the_url = '{% url "api-assets:idc-detail" pk=99991937 %}'.replace(99991937, id);
+	idcDelete(name, the_url);
+});
+</script>
+{% endblock %}
--- a/apps/assets/templates/assets/idc_list.html
+++ b/apps/assets/templates/assets/idc_list.html
@@ -0,0 +1,129 @@
+{% extends '_base_list.html' %}
+{% load i18n static %}
+{% block custom_head_css_js %}
+<link href="{% static 'css/plugins/select2/select2.min.css' %}" rel="stylesheet">
+<script src="{% static 'js/plugins/select2/select2.full.min.js' %}"></script>
+{% endblock %}
+{% block table_search %}{% endblock %}
+{% block table_container %}
+<div class="uc pull-left m-l-5 m-r-5">
+    <a href="{% url "assets:idc-create" %}" class="btn btn-sm btn-primary"> {% trans "Create IDC" %} </a>
+</div>
+<table class="table table-striped table-bordered table-hover " id="idc_list_table" >
+    <thead>
+    <tr>
+        <th class="text-center">
+            <input type="checkbox" id="check_all" class="ipt_check_all" >
+        </th>
+        <th class="text-center"><a href="{% url 'assets:idc-list' %}?sort=name">{% trans 'Name' %}</a></th>
+        <th class="text-center">{% trans 'Asset num' %}</th>
+        <th class="text-center">{% trans 'Contact' %}</th>
+        <th class="text-center">{% trans 'Phone' %}</th>
+        <th class="text-center">{% trans 'Operator' %}</th>
+        <th class="text-center">{% trans 'Action' %}</th>
+    </tr>
+    </thead>
+    <tbody>
+    </tbody>
+</table>
+<div id="actions" class="hide">
+    <div class="input-group">
+        <select class="form-control m-b" style="width: auto" id="slct_bulk_update">
+            <option value="delete">{% trans 'Delete selected' %}</option>
+        </select>
+        <div class="input-group-btn pull-left" style="padding-left: 5px;">
+            <button id='btn_bulk_update' style="height: 32px;"  class="btn btn-sm btn-primary">
+                {% trans 'Submit' %}
+            </button>
+        </div>
+    </div>
+</div>
+{% endblock %}
+{% block content_bottom_left %}{% endblock %}
+{% block custom_foot_js %}
+<script>
+$(document).ready(function(){
+    var options = {
+        ele: $('#idc_list_table'),
+        columnDefs: [
+            {targets: 1, createdCell: function (td, cellData, rowData) {
+                var detail_btn = '<a href="{% url "assets:idc-detail" pk=99991937 %}">' + cellData + '</a>';
+                $(td).html(detail_btn.replace('99991937', rowData.id));
+             }},
+
+            {targets: 6, createdCell: function (td, cellData, rowData) {
+                var update_btn = '<a href="{% url "assets:idc-update" pk=99991937 %}" class="btn btn-xs btn-info">{% trans "Update" %}</a>'.replace('99991937', cellData);
+                var del_btn = '<a class="btn btn-xs btn-danger m-l-xs btn_idc_delete" data-uid="99991937">{% trans "Delete" %}</a>'.replace('99991937', cellData);
+                $(td).html(update_btn + del_btn)
+             }}],
+        ajax_url: '{% url "api-assets:idc-list" %}',
+        columns: [{data: function(){return ""}}, {data: "name" }, {data: "assets_amount" }, {data: "contact" }, {data: "phone" },
+                  {data: "operator" }, {data: "id" }],
+        op_html: $('#actions').html()
+    };
+    jumpserver.initDataTable(options);
+})
+
+.on('click', '.btn_idc_delete', function () {
+    var $this = $(this);
+    var $data_table = $('#idc_list_table').DataTable();
+    var name = $(this).closest("tr").find(":nth-child(2)").children('a').html();
+    var uid = $this.data('uid');
+    var the_url = '{% url "api-assets:idc-detail" pk=99991937 %}'.replace('99991937', uid);
+    objectDelete($this, name, the_url);
+    setTimeout( function () {
+        $data_table.ajax.reload();
+    }, 3000);
+})
+
+.on('click', '#btn_bulk_update', function () {
+    var action = $('#slct_bulk_update').val();
+    var $data_table = $('#idc_list_table').DataTable();
+    var id_list = [];
+    var plain_id_list = [];
+    $data_table.rows({selected: true}).every(function(){
+        id_list.push({id: this.data().id});
+        plain_id_list.push(this.data().id);
+    });
+    if (id_list === []) {
+        return false;
+    }
+    var the_url = "{% url 'api-assets:idc-list' %}";
+    function doDelete() {
+        swal({
+            title: "{% trans 'Are you sure?' %}",
+            text: "{% trans 'This will delete the selected idc' %}",
+            type: "warning",
+            showCancelButton: true,
+            confirmButtonColor: "#DD6B55",
+            confirmButtonText: "{% trans 'Confirm' %}",
+            closeOnConfirm: false
+        }, function() {
+            var success = function() {
+                var msg = "{% trans 'IDC Deleted.' %}";
+                swal("{% trans 'IDC Delete' %}", msg, "success");
+                $('#idc_list_table').DataTable().ajax.reload();
+            };
+            var fail = function() {
+                var msg = "{% trans 'IDC Deleting failed.' %}";
+                swal("{% trans 'IDC Delete' %}", msg, "error");
+            };
+            var url_delete = the_url + '?id__in=' + JSON.stringify(plain_id_list);
+            APIUpdateAttr({url: url_delete, method: 'DELETE', success: success, error: fail});
+            $data_table.ajax.reload();
+            jumpserver.checked = false;
+        });
+    }
+    switch (action) {
+        case 'delete':
+            doDelete();
+            break;
+        default:
+            break;
+    }
+});
+</script>
+{% endblock %}
+
+
+
--- a/apps/assets/templates/assets/system_user_asset.html
+++ b/apps/assets/templates/assets/system_user_asset.html
@@ -0,0 +1,371 @@
+{% extends 'base.html' %}
+{% load static %}
+{% load i18n %}
+
+{% block custom_head_css_js %}
+    <link href="{% static "css/plugins/select2/select2.min.css" %}" rel="stylesheet">
+    <script src="{% static "js/plugins/select2/select2.full.min.js" %}"></script>
+{% endblock %}
+{% block content %}
+    <div class="wrapper wrapper-content animated fadeInRight">
+        <div class="row">
+            <div class="col-sm-12">
+                <div class="ibox float-e-margins">
+                    <div class="panel-options">
+                        <ul class="nav nav-tabs">
+                            <li>
+                                <a href="{% url 'assets:system-user-detail' pk=system_user.id %}" class="text-center"><i class="fa fa-laptop"></i> {% trans 'Detail' %} </a>
+                            </li>
+                            <li class="active"><a href="{% url 'assets:system-user-asset' pk=system_user.id %}" class="text-center">
+                                <i class="fa fa-bar-chart-o"></i> {% trans 'Attached assets' %}</a>
+                            </li>
+                        </ul>
+                    </div>
+                    <div class="tab-content">
+                        <div class="col-sm-7" style="padding-left: 0;">
+                            <div class="ibox float-e-margins">
+                                <div class="ibox-title">
+                                    <span style="float: left">{% trans 'Assets of ' %} <b>{{ system_user.name }} </b><span class="badge">{{ paginator.count }}</span></span>
+                                    <div class="ibox-tools">
+                                        <a class="collapse-link">
+                                            <i class="fa fa-chevron-up"></i>
+                                        </a>
+                                        <a class="dropdown-toggle" data-toggle="dropdown" href="#">
+                                            <i class="fa fa-wrench"></i>
+                                        </a>
+                                        <ul class="dropdown-menu dropdown-user">
+                                        </ul>
+                                        <a class="close-link">
+                                            <i class="fa fa-times"></i>
+                                        </a>
+                                    </div>
+                                </div>
+                                <div class="ibox-content">
+                                    <table class="table table-hover" id="system_user_list">
+                                        <thead>
+                                            <tr>
+                                                <th>{% trans 'Hostname' %}</th>
+                                                <th>{% trans 'IP' %}</th>
+                                                <th>{% trans 'Port' %}</th>
+                                                <th>{% trans 'Reachable' %}</th>
+                                                <th>{% trans 'Action' %}</th>
+                                            </tr>
+                                        </thead>
+                                        <tbody>
+                                            {% for asset in page_obj %}
+                                            <tr>
+                                                <td>{{ asset.hostname }}</td>
+                                                <td>{{ asset.ip }}</td>
+                                                <td>{{ asset.port }}</td>
+                                                <td>
+                                                    <i class="fa fa-check text-navy"></i>
+                                                </td>
+                                                <td>
+                                                    <button class="btn btn-danger pull-right btn-xs {% if asset.is_inherit_from_asset_groups %} disabled {% endif %}" type="button"><i class="fa fa-minus"></i></button>
+                                                </td>
+                                            </tr>
+                                            {% endfor %}
+                                        </tbody>
+                                    </table>
+{#                                    <div class="row">#}
+{#                                        {% include '_pagination.html' %}#}
+{#                                    </div>#}
+                                </div>
+                            </div>
+                        </div>
+                        <div class="col-sm-5" style="padding-left: 0;padding-right: 0">
+                            <div class="panel panel-primary">
+                                <div class="panel-heading">
+                                    <i class="fa fa-info-circle"></i> {% trans 'Attach to assets ' %}
+                                </div>
+                                <div class="panel-body">
+                                    <table class="table">
+                                        <tbody>
+                                        <form>
+                                            <tr class="no-borders-tr">
+                                                <td colspan="2">
+                                                    <select data-placeholder="{% trans 'Select asset' %}" class="select2" style="width: 100%" multiple="" tabindex="4">
+                                                        {% for asset in assets_remain %}
+                                                            <option value="{{ asset.id }}">{{ asset.ip}}:{{ asset.port }}</option>
+                                                        {% endfor %}
+                                                    </select>
+                                                </td>
+                                            </tr>
+                                            <tr class="no-borders-tr">
+                                                <td colspan="2">
+                                                    <button type="button" class="btn btn-primary btn-sm btn-add-asset2system-user">{% trans 'Confirm' %}</button>
+                                                </td>
+                                            </tr>
+                                        </form>
+                                        </tbody>
+                                    </table>
+                                </div>
+                            </div>
+
+                            <div class="panel panel-info">
+                                <div class="panel-heading">
+                                    <i class="fa fa-info-circle"></i> {% trans 'Attach to asset groups' %}
+                                </div>
+                                <div class="panel-body">
+                                    <table class="table group_edit">
+                                        <tbody>
+                                        <form>
+                                            <tr>
+                                                <td colspan="2" class="no-borders">
+                                                    <select data-placeholder="{% trans 'Add asset group' %}" class="select2" style="width: 100%" multiple="" tabindex="4">
+                                                        {% for asset_group in asset_groups_remain %}
+                                                        <option value="{{ asset_group.id }}">{{ asset_group.name }}</option>
+                                                        {% endfor %}
+                                                    </select>
+                                                </td>
+                                            </tr>
+                                            <tr>
+                                                <td colspan="2" class="no-borders">
+                                                    <button type="button" class="btn btn-info btn-sm" id="btn_add_user_group">{% trans 'Attach AssetGroup' %}</button>
+                                                </td>
+                                            </tr>
+                                        </form>
+
+                                        {% for asset_group in asset_groups %}
+                                        <tr>
+                                          <td ><b class="bdg_asset_groups" data-gid={{ asset_group.id }}>{{ asset_group.name }}</b></td>
+                                          <td>
+                                              <button class="btn btn-danger pull-right btn-xs btn-leave-system_user" type="button"><i class="fa fa-minus"></i></button>
+                                          </td>
+                                        </tr>
+                                        {% endfor %}
+                                        </tbody>
+                                    </table>
+                                </div>
+                            </div>
+                        </div>
+                    </div>
+                </div>
+            </div>
+        </div>
+    </div>
+    </div>
+
+{% endblock %}
+{% block custom_foot_js %}
+<script>
+jumpserver.assets_selected = {};
+jumpserver.asset_groups_selected = {};
+Array.prototype.remove = function(val) {
+	var index = this.indexOf(val);
+		if (index > -1) {
+		this.splice(index, 1);
+	}
+};
+Array.prototype.unique = function(){
+	var res = [];
+	var json = {};
+ 	for(var i = 0; i < this.length; i++){
+  		if(!json[this[i]]){
+   			res.push(this[i]);
+   			json[this[i]] = 1;
+  		}
+ 	}
+ 	return res;
+};
+function objectDelete(obj, name, url, data) {
+    function doDelete() {
+        var body = data;
+        var success = function() {
+            swal('Deleted!', "[ "+name+"]"+" has been deleted ", "success");
+            $(obj).parent().parent().remove();
+        };
+        var fail = function() {
+            swal("Failed", "Delete"+"[ "+name+" ]"+"failed", "error");
+        };
+        APIUpdateAttr({
+            url: url,
+            body: JSON.stringify(body),
+            method: 'PATCH',
+            success: success,
+            error: fail
+        });
+    }
+    swal({
+        title: 'Are you sure delete ?',
+        text: " [" + name + "] ",
+        type: "warning",
+        showCancelButton: true,
+        cancelButtonText: 'Cancel',
+        confirmButtonColor: "#DD6B55",
+        confirmButtonText: 'Confirm',
+        closeOnConfirm: false
+    }, function () {
+        doDelete()
+    });
+}
+function updateSystemUserAssetGroup(asset_groups) {
+	var the_url = "{% url 'api-assets:systemuser-update-assetgroups' pk=system_user.id %}";
+    var body = {
+        asset_groups: Object.assign([], asset_groups)
+    };
+    var success = function(data) {
+        $('.select2-selection__rendered').empty();
+        $('#groups_selected').val('');
+        $.map(jumpserver.asset_groups_selected, function(asset_groups, index) {
+            $('#opt_' + index).remove();
+            $('.system-user-table tbody').append(
+                '<tr>' +
+                '<td><b class="bdg_asset_groups" data-sid="' + index + '">' + asset_groups + '</b></td>' +
+                '<td><button class="btn btn-danger btn-xs pull-right btn-leave-system_user" type="button"><i class="fa fa-minus"></i></button></td>' +
+                '</tr>'
+            )
+        });
+        jumpserver.assets_selected = {};
+    };
+    APIUpdateAttr({
+        url: the_url,
+        body: JSON.stringify(body),
+        success: success
+    });
+}
+$(document).ready(function () {
+	$('.select2').select2()
+	.on("select2:select", function (evt) {
+		var data = evt.params.data;
+		jumpserver.assets_selected[data.id] = data.text;
+		jumpserver.asset_groups_selected[data.id] = data.text;
+	})
+	.on('select2:unselect', function(evt) {
+		var data = evt.params.data;
+		delete jumpserver.assets_selected[data.id];
+		delete jumpserver.asset_groups_selected[data.id];
+	});
+	var options = {
+		ele: $('#system_user_list'),
+		buttons: [],
+		order: [],
+		columnDefs: [
+			{targets: 0, createdCell: function (td, cellData, rowData) {
+				var detail_btn = '<a href="{% url "assets:asset-detail" pk=99991937 %}" data-aid="'+rowData.id+'">' + cellData + '</a>';
+				$(td).html(detail_btn.replace('99991937', rowData.id));
+			}},
+			{targets: 3, createdCell: function (td, cellData) {
+				if (!cellData) {
+					$(td).html('<i class="fa fa-times text-danger"></i>')
+				} else {
+					$(td).html('<i class="fa fa-check text-navy"></i>')
+				}
+			}},
+			{targets: 4, createdCell: function (td, cellData, rowData) {
+				var update_btn = '<a href="{% url "assets:asset-update" pk=99991937 %}" class="btn btn-xs btn-info">{% trans "Update" %}</a>'.replace('99991937', rowData.id);
+				var del_btn = '<a class="btn btn-xs btn-danger m-l-xs btn_asset_delete" data-aid="99991937">{% trans "Delete" %}</a>'.replace('99991937', rowData.id);
+				$(td).html(update_btn + del_btn)
+			}}
+			],
+		ajax_url: '{% url "api-assets:asset-list" %}?system_user_id={{ system_user.id }}',
+		columns: [{data: "hostname" }, {data: "ip" }, {data: "port" }, {data: function () { return ""; } }, {data: "id"}],
+		op_html: $('#actions').html()
+	};
+	jumpserver.initDataTable(options);
+})
+
+.on('click', '.btn-add-asset2system-user', function () {
+	if (Object.keys(jumpserver.assets_selected).length === 0) {
+		return false;
+	}
+	var $data_table = $("#system_user_list").DataTable();
+	var assets = [];
+	$.ajax({
+		url: '{% url "api-assets:asset-list" %}?system_user_id={{ system_user.id }}',
+		method: 'GET',
+		dataType: 'json',
+		success: function (result) {
+			for(var i in result){
+				if (!isNaN(parseInt(result[i]['id']))) {
+					assets.push(parseInt(result[i]['id']))
+				}
+			}
+			$.map(jumpserver.assets_selected, function(value, index) {
+				assets.push(parseInt(index));
+			});
+			assets.unique();
+			var the_url = "{% url 'api-assets:systemuser-update-assets' pk=system_user.id %}";
+			var body = {"assets": assets};
+			APIUpdateAttr({
+				url: the_url,
+	            body: JSON.stringify(body),
+	            method: 'PATCH'
+			});
+			$data_table.ajax.reload();
+		}
+	});
+})
+
+.on('click', '.btn_asset_delete', function () {
+	var $this = $(this);
+	var the_url = "{% url 'api-assets:systemuser-update-assets' pk=system_user.id %}";
+	var name = $(this).closest("tr").find(":nth-child(1) > a").html();
+	var $data_table = $("#system_user_list").DataTable();
+	var assets = [];
+	$('#system_user_list > tbody > tr').map(function () {
+		assets.push(parseInt($(this).closest("tr").find(":nth-child(1) > a").attr("data-aid")))
+	});
+	var delete_asset_id = $(this).data('aid');
+	assets.remove(delete_asset_id);
+	assets.unique();
+	var data = {"assets": assets};
+	objectDelete($this, name, the_url, data);
+	$data_table.ajax.reload();
+})
+	
+.on('click', '#btn_add_user_group', function () {
+	jumpserver.assets_selected = {};
+	if (Object.keys(jumpserver.asset_groups_selected).length === 0) {
+		return false;
+	}
+	asset_groups = [];
+	$.ajax({
+		url: '{% url "api-assets:systemuser-update-assetgroups" pk=system_user.id %}',
+		method: 'GET',
+		dataType: 'json',
+		success: function (result) {
+			for (var i in result['asset_groups']) {
+				if (!isNaN(result['asset_groups'][i])) {
+					asset_groups.push(parseInt(result['asset_groups'][i]));
+				}
+			}
+			$.map(jumpserver.asset_groups_selected, function(value, index) {
+				asset_groups.push(parseInt(index));
+			});
+			asset_groups.unique();
+			console.log(asset_groups);
+			var the_url = '{% url "api-assets:systemuser-update-assetgroups" pk=system_user.id %}';
+			var body = {"asset_groups": asset_groups};
+			APIUpdateAttr({
+				url: the_url,
+	            body: JSON.stringify(body),
+	            method: 'PATCH'
+			});
+{#			TODO: reload the table #}
+{#			window.location.href="{% url 'assets:system-user-asset' pk=system_user.id %}"#}
+		}
+	});
+})
+	
+.on('click', '.btn-leave-system_user', function () {
+	var $this = $(this);
+	var $tr = $this.closest('tr');
+	var $badge = $tr.find('.bdg_asset_groups');
+	var sid = $badge.data('gid');
+	var name = $badge.html() || $badge.text();
+	$('system-user-table').append(
+		'<option value="' + sid + '" id="opt_' + sid + '">' + name + '</option>'
+	);
+	$tr.remove();
+	var asset_groups = $('.bdg_asset_groups').map(function () {
+		return $(this).data('gid');
+	}).get();
+	updateSystemUserAssetGroup(asset_groups);
+});
+
+
+
+
+</script>
+{% endblock %}
--- a/apps/assets/templates/assets/system_user_create.html
+++ b/apps/assets/templates/assets/system_user_create.html
@@ -0,0 +1,7 @@
+{% extends 'assets/_system_user.html' %}
+{% load i18n %}
+{% load static %}
+
+{% block auth %}
+    {{ block.super }}
+{% endblock %}
--- a/apps/assets/templates/assets/system_user_detail.html
+++ b/apps/assets/templates/assets/system_user_detail.html
@@ -0,0 +1,178 @@
+{% extends 'base.html' %}
+{% load static %}
+{% load i18n %}
+
+{% block custom_head_css_js %}
+    <link href='{% static "css/plugins/select2/select2.min.css" %}' rel="stylesheet">
+    <script src='{% static "js/plugins/select2/select2.full.min.js" %}'></script>
+{% endblock %}
+
+{% block content %}
+    <div class="wrapper wrapper-content animated fadeInRight">
+        <div class="row">
+            <div class="col-sm-12">
+                <div class="ibox float-e-margins">
+                    <div class="panel-options">
+                        <ul class="nav nav-tabs">
+                            <li class="active">
+                                <a href="{% url 'assets:system-user-detail' pk=system_user.id %}" class="text-center"><i class="fa fa-laptop"></i> {% trans 'Detail' %} </a>
+                            </li>
+                            <li>
+                                <a href="{% url 'assets:system-user-asset' pk=system_user.id %}" class="text-center">
+                                <i class="fa fa-bar-chart-o"></i> {% trans 'Attached assets' %}
+                                </a>
+                            </li>
+                            <li class="pull-right">
+                                <a class="btn btn-outline btn-default" href="{% url 'assets:system-user-update' pk=system_user.id %}"><i class="fa fa-edit"></i>Update</a>
+                            </li>
+                        </ul>
+                    </div>
+                    <div class="tab-content">
+                        <div class="col-sm-7" style="padding-left: 0;">
+                            <div class="ibox float-e-margins">
+                                <div class="ibox-title">
+                                    <span class="label"><b>{{ system_user.name }}</b></span>
+                                    <div class="ibox-tools">
+                                        <a class="collapse-link">
+                                            <i class="fa fa-chevron-up"></i>
+                                        </a>
+                                        <a class="dropdown-toggle" data-toggle="dropdown" href="#">
+                                            <i class="fa fa-wrench"></i>
+                                        </a>
+                                        <ul class="dropdown-menu dropdown-user">
+                                        </ul>
+                                        <a class="close-link">
+                                            <i class="fa fa-times"></i>
+                                        </a>
+                                    </div>
+                                </div>
+                                <div class="ibox-content">
+                                    <table class="table">
+                                        <tbody>
+                                        <tr class="no-borders-tr">
+                                            <td>{% trans 'Name' %}:</td>
+                                            <td><b>{{ system_user.name }}</b></td>
+                                        </tr>
+                                        <tr>
+                                            <td>{% trans 'Username' %}:</td>
+                                            <td><b>{{ system_user.username }}</b></td>
+                                        </tr>
+                                        <tr>
+                                            <td>{% trans 'Protocol' %}:</td>
+                                            <td><b>{{ system_user.protocol }}</b></td>
+                                        </tr>
+                                        <tr>
+                                            <td>{% trans 'Auto push' %}:</td>
+                                            <td><b>{{ system_user.auto_push|yesno:"Yes,No,Unknown" }}</b></td>
+                                        </tr>
+                                        <tr>
+                                            <td>{% trans 'Sudo' %}:</td>
+                                            <td><b>{{ system_user.sudo }}</b></td>
+                                        </tr>
+                                        {% if system_user.shell %}
+                                        <tr>
+                                            <td>{% trans 'Shell' %}:</td>
+                                            <td><b>{{ system_user.shell }}</b></td>
+                                        </tr>
+                                        {% endif %}
+                                        {% if system_user.home %}
+                                        <tr>
+                                            <td>{% trans 'Home' %}:</td>
+                                            <td><b>{{ system_user.home }}</b></td>
+                                        </tr>
+                                        {% endif %}
+                                        {% if system_user.uid %}
+                                            <tr>
+                                                <td>{% trans 'Uid' %}:</td>
+                                                <td><b>{{ system_user.uid }}</b></td>
+                                            </tr>
+                                        {% endif %}
+                                        <tr>
+                                            <td>{% trans 'Date created' %}:</td>
+                                            <td><b>{{ system_user.date_created }}</b></td>
+                                        </tr>
+                                        <tr>
+                                            <td>{% trans 'Created by' %}:</td>
+                                            <td><b>{{ asset_group.created_by  }}</b></td>
+                                        </tr>
+                                        <tr>
+                                            <td>{% trans 'Comment' %}:</td>
+                                            <td><b>{{ system_user.comment }}</b></td>
+                                        </tr>
+                                        </tbody>
+                                    </table>
+                                </div>
+                            </div>
+                        </div>
+
+                        <div class="col-sm-5" style="padding-left: 0;padding-right: 0">
+                            <div class="panel panel-primary">
+                                <div class="panel-heading">
+                                    <i class="fa fa-info-circle"></i> {% trans 'Quick update' %}
+                                </div>
+                                <div class="panel-body">
+                                    <table class="table">
+                                        <tbody>
+                                        <tr class="no-borders-tr">
+                                            <td width="50%">{% trans 'Get manual install script' %}:</td>
+                                            <td>
+                                                <span style="float: right">
+                                                    <button type="button" class="btn btn-primary btn-xs" style="width: 54px">{% trans 'Get' %}</button>
+                                                </span>
+                                            </td>
+                                        </tr>
+
+                                        <tr>
+                                            <td width="50%">{% trans 'Retest asset connectivity' %}:</td>
+                                            <td>
+                                                <span style="float: right">
+                                                    <button type="button" class="btn btn-primary btn-xs" style="width: 54px">{% trans 'Start' %}</button>
+                                                </span>
+                                            </td>
+                                        </tr>
+
+                                        <tr>
+                                            <td width="50%">{% trans 'Reset private key' %}:</td>
+                                            <td>
+                                                <span style="float: right">
+                                                    <button type="button" class="btn btn-primary btn-xs" style="width: 54px">{% trans 'Reset' %}</button>
+                                                </span>
+                                            </td>
+                                        </tr>
+                                        </tbody>
+                                    </table>
+                                </div>
+                            </div>
+                        </div>
+                    </div>
+                </div>
+            </div>
+        </div>
+    </div>
+    </div>
+
+{% endblock %}
+{% block custom_foot_js %}
+    <script>
+{#        function switch_user_status(obj) {#}
+{#            var status = $(obj).prop('checked');#}
+{##}
+{#            $.ajax({#}
+{#                url: "{% url 'users:user-active-api' pk=user.id %}",#}
+{#                type: "PUT",#}
+{#                data: {#}
+{#                    'is_active': status#}
+{#                },#}
+{#                success: function (data, status) {#}
+{#                    console.log(data)#}
+{#                },#}
+{#                error: function () {#}
+{#                    console.log('error')#}
+{#                }#}
+{#            })#}
+{#        }#}
+        $(document).ready(function () {
+            $('.select2').select2();
+        });
+    </script>
+{% endblock %}
--- a/apps/assets/templates/assets/system_user_list.html
+++ b/apps/assets/templates/assets/system_user_list.html
@@ -0,0 +1,138 @@
+{% extends '_base_list.html' %}
+{% load i18n %}
+
+{% block table_search %}
+{% endblock %}
+
+{% block table_container %}
+<div class="uc pull-left m-l-5 m-r-5">
+    <a href="{% url 'assets:system-user-create' %}" class="btn btn-sm btn-primary "> {% trans "Create system user" %} </a>
+</div>
+<table class="table table-striped table-bordered table-hover " id="system_user_list_table" >
+    <thead>
+    <tr>
+        <th class="text-center">
+            <input type="checkbox" id="check_all" class="ipt_check_all" >
+        </th>
+        <th class="text-center">{% trans 'Name' %}</th>
+        <th class="text-center">{% trans 'Username' %}</th>
+        <th class="text-center">{% trans 'Asset' %}</th>
+        <th class="text-center">{% trans 'Unreachable' %}</th>
+        <th class="text-center">{% trans 'Comment' %}</th>
+        <th class="text-center">{% trans 'Action' %}</th>
+    </tr>
+    </thead>
+    <tbody>
+    </tbody>
+</table>
+<div id="actions" class="hide">
+    <div class="input-group">
+        <select class="form-control m-b" style="width: auto" id="slct_bulk_update">
+            <option value="delete">{% trans 'Delete selected' %}</option>
+            <option value="update">{% trans 'Update selected' %}</option>
+        </select>
+        <div class="input-group-btn pull-left" style="padding-left: 5px;">
+            <button id='btn_bulk_update' style="height: 32px;"  class="btn btn-sm btn-primary">
+                {% trans 'Submit' %}
+            </button>
+        </div>
+    </div>
+</div>
+{% endblock %}
+{% block custom_foot_js %}
+<script>
+$(document).ready(function(){
+    var options = {
+        ele: $('#system_user_list_table'),
+        columnDefs: [
+            {targets: 1, createdCell: function (td, cellData, rowData) {
+                var detail_btn = '<a href="{% url "assets:system-user-detail" pk=99991937 %}">' + cellData + '</a>';
+                $(td).html(detail_btn.replace('99991937', rowData.id));
+            }},
+            {targets: 5, createdCell: function (td, cellData) {
+                var innerHtml = cellData.length > 30 ? cellData.substring(0, 30) + '...': cellData;
+                $(td).html('<span href="javascript:void(0);" data-toggle="tooltip" title="' + cellData + '">' + innerHtml + '</span>');
+            }},
+            {targets: 6, createdCell: function (td, cellData, rowData) {
+{#                var script_btn = '<a href="{% url "assets:system-user-update" pk=99991937 %}" class="btn btn-xs btn-primary">{% trans "Script" %}</a>'.replace('99991937', cellData);#}
+                var update_btn = '<a href="{% url "assets:system-user-update" pk=99991937 %}" class="btn btn-xs m-l-xs btn-info">{% trans "Update" %}</a>'.replace('99991937', cellData);
+                var del_btn = '<a class="btn btn-xs btn-danger m-l-xs btn_admin_user_delete" data-uid="99991937">{% trans "Delete" %}</a>'.replace('99991937', cellData);
+                $(td).html(update_btn + del_btn)
+            }}],
+        ajax_url: '{% url "api-assets:system-user-list" %}',
+        columns: [{data: "id" }, {data: "name" }, {data: "username" }, {data: "assets_amount" }, {data: function () { return "3"}},
+            {data: "comment" }, {data: "id" }],
+        op_html: $('#actions').html()
+        };
+    jumpserver.initDataTable(options);
+})
+
+.on('click', '.btn_admin_user_delete', function () {
+    var $this = $(this);
+    var $data_table = $('#idc_list_table').DataTable();
+    var name = $(this).closest("tr").find(":nth-child(2)").children('a').html();
+    var uid = $this.data('uid');
+    var the_url = '{% url "api-assets:system-user-detail" pk=99991937 %}'.replace('99991937', uid);
+    objectDelete($this, name, the_url);
+    setTimeout( function () {
+        $data_table.ajax.reload();
+    }, 3000);
+})
+
+.on('click', '#btn_bulk_update', function () {
+    var action = $('#slct_bulk_update').val();
+    var $data_table = $('#system_user_list_table').DataTable();
+    var id_list = [];
+    var plain_id_list = [];
+    $data_table.rows({selected: true}).every(function(){
+        id_list.push({id: this.data().id});
+        plain_id_list.push(this.data().id);
+    });
+    if (id_list === []) {
+        return false;
+    }
+    var the_url = "{% url 'api-assets:system-user-list' %}";
+    function doDelete() {
+        swal({
+            title: "{% trans 'Are you sure?' %}",
+            text: "{% trans 'This will delete the selected System Users !!!' %}",
+            type: "warning",
+            showCancelButton: true,
+            confirmButtonColor: "#DD6B55",
+            confirmButtonText: "{% trans 'Confirm' %}",
+            closeOnConfirm: false
+        }, function() {
+            var success = function() {
+                var msg = "{% trans 'System Users Deleted.' %}";
+                swal("{% trans 'System Users Delete' %}", msg, "success");
+                $('#system_user_list_table').DataTable().ajax.reload();
+            };
+            var fail = function() {
+                var msg = "{% trans 'System Users Deleting failed.' %}";
+                swal("{% trans 'System Users Delete' %}", msg, "error");
+            };
+            var url_delete = the_url + '?id__in=' + JSON.stringify(plain_id_list);
+            APIUpdateAttr({url: url_delete, method: 'DELETE', success: success, error: fail});
+            $data_table.ajax.reload();
+            jumpserver.checked = false;
+        });
+    }
+    function doUpdate() {
+{#        TODO: bulk update the System Users #}
+    }
+    switch (action) {
+        case 'delete':
+            doDelete();
+            break;
+        case 'update':
+            doUpdate();
+            break;
+        default:
+            break;
+    }
+})
+</script>
+{% endblock %}
+
+
+
--- a/apps/assets/templates/assets/system_user_update.html
+++ b/apps/assets/templates/assets/system_user_update.html
@@ -0,0 +1,53 @@
+{% extends 'assets/_system_user.html' %}
+{% load i18n %}
+{% load static %}
+{% load bootstrap3 %}
+
+{% block auth %}
+<div class="password-auth hidden">
+    {% bootstrap_field form.password layout="horizontal" %}
+</div>
+<div class="public-key-auth">
+    <div>
+        {% bootstrap_field form.private_key_file layout="horizontal" %}
+    </div>
+</div>
+{% endblock %}
+
+{% block custom_foot_js %}
+	<script>
+    var auth_method = '#'+'{{ form.auth_method.id_for_label }}';
+    var auto_generate_key = '#'+'{{ form.auto_generate_key.id_for_label }}';
+    function authMethodDisplay() {
+      if ($(auth_method).val() == 'P') {
+        $('.password-auth').removeClass('hidden');
+        $('.public-key-auth').addClass('hidden');
+        $('#'+'{{ form.password.id_for_label }}').removeAttr('disabled');
+
+      } else if ($(auth_method).val() == 'K') {
+        $('.password-auth').addClass('hidden');
+        $('.public-key-auth').removeClass('hidden');
+        $('#'+'{{ form.password.id_for_label }}').removeAttr('required');
+        $('#'+'{{ form.password.id_for_label }}').attr('disabled', 'disabled');
+
+        if ($(auto_generate_key).prop('checked')){
+          $('#'+'{{ form.private_key_file.id_for_label }}').closest('.form-group').addClass('hidden');
+        } else {
+          $('#'+'{{ form.private_key_file.id_for_label }}').closest('.form-group').removeClass('hidden');
+        }
+      }
+    }
+    $(document).ready(function () {
+      $('.select2').select2();
+      authMethodDisplay();
+      $(auth_method).change(function () {
+        authMethodDisplay();
+      });
+      $(auto_generate_key).change(function () {
+        authMethodDisplay();
+      });
+    })
+
+
+	</script>
+{% endblock %}
--- a/apps/assets/templates/assets/user_asset_list.html
+++ b/apps/assets/templates/assets/user_asset_list.html
@@ -0,0 +1,264 @@
+{% extends '_base_list.html' %}
+{% load i18n %}
+{% load static %}
+{% block custom_head_css_js %}
+<link href="{% static 'css/plugins/select2/select2.min.css' %}" rel="stylesheet">
+<script src="{% static 'js/plugins/select2/select2.full.min.js' %}"></script>
+
+<style>
+    .custom{
+        margin-right:5px;
+        }
+    #modal .modal-body { max-height: 200px; }
+</style>
+{% endblock %}
+{% block content_left_head %}{% endblock %}
+
+{% block table_search %}
+{#    <div class="html5buttons">#}
+{#        <div class="dt-buttons btn-group">#}
+{#            <a class="btn btn-default btn_export" tabindex="0">#}
+{#                <span>{% trans "Export" %}</span>#}
+{#            </a>#}
+{#        </div>#}
+{#    </div>#}
+{% endblock %}
+
+
+{% block table_container %}
+<table class="table table-striped table-bordered table-hover " id="asset_list_table" >
+    <thead>
+        <tr>
+            <th class="text-center"><input type="checkbox" class="ipt_check_all"></th>
+            <th class="text-center">{% trans 'Hostname' %}</th>
+            <th class="text-center">{% trans 'IP' %}</th>
+            <th class="text-center">{% trans 'Port' %}</th>
+            <th class="text-center">{% trans 'Type' %}</th>
+            <th class="text-center">{% trans 'Env' %}</th>
+            <th class="text-center">{% trans 'Hardware' %}</th>
+            <th class="text-center">{% trans 'Valid' %}</th>
+            <th class="text-center">{% trans 'Alive' %}</th>
+        </tr>
+    </thead>
+    <tbody>
+    </tbody>
+</table>
+{% endblock %}
+
+{% block custom_foot_js %}
+<script src="{% static 'js/jquery.form.min.js' %}"></script>
+<script type="text/javascript">
+$(document).ready(function(){
+	var options = {
+		ele: $('#asset_list_table'),
+		columnDefs: [
+			{targets: 1, createdCell: function (td, cellData, rowData) {
+				var detail_btn = '<a href="{% url "assets:asset-detail" pk=99991937 %}">' + cellData + '</a>';
+				$(td).html(detail_btn.replace('99991937', rowData.id));
+			}},
+			{targets: 7, createdCell: function (td, cellData) {
+				if (!cellData) {
+					$(td).html('<i class="fa fa-times text-danger"></i>')
+				} else {
+					$(td).html('<i class="fa fa-check text-navy"></i>')
+				}
+			}},
+			{targets: 8, createdCell: function (td, cellData) {
+				if (!cellData) {
+					$(td).html('<i class="fa fa-circle text-danger"></i>')
+				} else {
+					$(td).html('<i class="fa fa-circle text-navy"></i>')
+				}
+			}}
+		],
+		ajax_url: '{% url "api-assets:asset-list" %}',
+		columns: [{data: "id"}, {data: "hostname" }, {data: "ip" }, {data: "port" },
+			{data: "get_type_display" }, {data: "get_env_display"}, {data: "hardware"},
+			{data: "is_active" }, {data: "is_active"}],
+	};
+	var table = jumpserver.initDataTable(options);
+	$('.btn_export').click(function () {
+		var assets = [];
+		var rows = table.rows('.selected').data();
+		$.each(rows, function (index, obj) {
+			assets.push(obj.id)
+		});
+		console.log(assets);
+		$.ajax({
+			url: "{% url "assets:asset-export" %}",
+			method: 'POST',
+			data: JSON.stringify({assets_id: assets}),
+			dataType: "json",
+			success: function (data, textStatus) {
+				window.open(data.redirect)
+			},
+			error: function () {
+				toastr.error('Export failed');
+			}
+		})
+	});
+ 	$('#btn_asset_import').click(function() {
+		var $form = $('#fm_asset_import');
+		$form.find('.help-block').remove();
+		function success (data) {
+			if (data.valid === false) {
+				$('<span />', {class: 'help-block text-danger'}).html(data.msg).insertAfter($('#id_assets'));
+			} else {
+				$('#id_created').html(data.created_info);
+				$('#id_created_detail').html(data.created.join(', '));
+				$('#id_updated').html(data.updated_info);
+				$('#id_updated_detail').html(data.updated.join(', '));
+				$('#id_failed').html(data.failed_info);
+				$('#id_failed_detail').html(data.failed.join(', '));
+				var $data_table = $('#asset_list_table').DataTable();
+				$data_table.ajax.reload();
+			}
+		}
+		$form.ajaxSubmit({success: success});
+	})
+})
+
+.on('click', '.btn_asset_delete', function () {
+	var $this = $(this);
+	var name = $(this).closest("tr").find(":nth-child(2)").children('a').html();
+	var uid = $this.data('uid');
+	var the_url = '{% url "api-assets:asset-detail" pk=99991937 %}'.replace('99991937', uid);
+	objectDelete($this, name, the_url);
+})
+
+.on('click', '#btn_bulk_update', function () {
+	var action = $('#slct_bulk_update').val();
+	var $data_table = $('#asset_list_table').DataTable();
+	var id_list = [];
+    var plain_id_list = [];
+    $data_table.rows({selected: true}).every(function(){
+        id_list.push({id: this.data().id});
+        plain_id_list.push(this.data().id);
+    });
+    if (plain_id_list.length == 0) {
+        return false;
+    }
+    var the_url = "{% url 'api-assets:asset-list' %}";
+    function doDeactive() {
+        var body = $.each(id_list, function(index, asset_object) {
+            asset_object['is_active'] = false;
+        });
+        APIUpdateAttr({url: the_url, method: 'PATCH', body: JSON.stringify(body)});
+        $data_table.ajax.reload();
+        jumpserver.checked = false;
+    }
+    function doActive() {
+        var body = $.each(id_list, function(index, asset_object) {
+            asset_object['is_active'] = true;
+        });
+        APIUpdateAttr({url: the_url, method: 'PATCH', body: JSON.stringify(body)});
+        $data_table.ajax.reload();
+        jumpserver.checked = false;
+    }
+    function doDelete() {
+        swal({
+            title: "{% trans 'Are you sure?' %}",
+            text: "{% trans 'This will delete the selected assets !!!' %}",
+            type: "warning",
+            showCancelButton: true,
+            confirmButtonColor: "#DD6B55",
+            confirmButtonText: "{% trans 'Confirm' %}",
+            closeOnConfirm: false
+        }, function() {
+            var success = function() {
+                var msg = "{% trans 'Asset Deleted.' %}";
+                swal("{% trans 'Asset Delete' %}", msg, "success");
+                $('#asset_list_table').DataTable().ajax.reload();
+            };
+            var fail = function() {
+                var msg = "{% trans 'Asset Deleting failed.' %}";
+                swal("{% trans 'Asset Delete' %}", msg, "error");
+            };
+            var url_delete = the_url + '?id__in=' + JSON.stringify(plain_id_list);
+            APIUpdateAttr({url: url_delete, method: 'DELETE', success: success, error: fail});
+            $data_table.ajax.reload();
+            jumpserver.checked = false;
+        });
+    }
+    function doUpdate() {
+        $('#asset_bulk_update_modal').modal('show');
+    }
+    switch(action) {
+        case 'deactive':
+            doDeactive();
+            break;
+        case 'delete':
+            doDelete();
+            break;
+        case 'update':
+            doUpdate();
+            break;
+        case 'active':
+            doActive();
+            break;
+        default:
+            break;
+    }
+})
+
+.on('click', '#btn_asset_bulk_update', function () {
+	var json_data = $("#fm_asset_bulk_update").serializeObject();
+	var body = {};
+    body.enable_otp = (json_data.enable_otp === 'on')? true: false;
+    if (json_data.type != '') {
+        body.type = json_data.type;
+    }
+    if (json_data.groups != undefined) {
+        body.groups = json_data.groups;
+    }
+    if (typeof body.groups === 'string') {
+        body.groups = [parseInt(body.groups)]
+    } else if(typeof body.groups === 'array') {
+        var new_groups = body.groups.map(Number);
+        body.groups = new_groups;
+    }
+
+    if (json_data.system_users != undefined) {
+    	body.system_users = json_data.system_users;
+    }
+    if (typeof body.system_users === 'string') {
+    	body.system_users = [parseInt(body.system_users)]
+    } else if(typeof body.system_users === 'array') {
+    	var new_users = body.system_users.map(Number);
+    	body.system_users = new_users;
+    }
+
+    if (json_data.tags != undefined) {
+    	body.tags = json_data.tags;
+    }
+    if (typeof body.tags == 'string') {
+    	body.tags = [parseInt(body.tags)];
+    } else if (typeof body.tags === 'array') {
+    	var new_tags = body.tags.map(Number);
+    	body.tags = new_tags;
+    }
+
+    var $data_table = $('#asset_list_table').DataTable();
+    var post_list = [];
+    $data_table.rows({selected: true}).every(function(){
+        var content = Object.assign({id: this.data().id}, body);
+        post_list.push(content);
+    });
+    if (post_list === []) {
+        return false
+    }
+    var the_url = "{% url 'api-assets:asset-list' %}";
+    var success = function() {
+        var msg = "{% trans 'The selected assets has been updated successfully.' %}";
+        swal("{% trans 'Asset Updated' %}", msg, "success");
+        $('#asset_list_table').DataTable().ajax.reload();
+        jumpserver.checked = false;
+    };
+    console.log(JSON.stringify(post_list));
+    console.log(the_url);
+{#    APIUpdateAttr({url: the_url, method: 'PATCH', body: JSON.stringify(post_list), success: success});#}
+    $('#asset_bulk_update_modal').modal('hide');
+});
+
+</script>
+{% endblock %}
--- a/apps/assets/templatetags/asset_tags.py
+++ b/apps/assets/templatetags/asset_tags.py
@@ -0,0 +1,6 @@
+
+from django import template
+from django.utils import timezone
+from django.conf import settings
+register = template.Library()
+
--- a/apps/assets/tests.py
+++ b/apps/assets/tests.py
--- a/apps/assets/urls/init.py
+++ b/apps/assets/urls/init.py
@@ -0,0 +1 @@
+
--- a/apps/assets/urls/api_urls.py
+++ b/apps/assets/urls/api_urls.py
@@ -0,0 +1,57 @@
+# coding:utf-8
+from django.conf.urls import url
+from .. import api
+from rest_framework import routers
+from rest_framework_bulk.routes import BulkRouter
+
+app_name = 'assets'
+
+
+router = BulkRouter()
+router.register(r'v1/groups', api.AssetGroupViewSet, 'asset-group')
+router.register(r'v1/assets', api.AssetViewSet, 'asset')
+router.register(r'v1/idc', api.IDCViewSet, 'idc')
+router.register(r'v1/admin-user', api.AdminUserViewSet, 'admin-user')
+router.register(r'v1/system-user', api.SystemUserViewSet, 'system-user')
+
+urlpatterns = [
+    url(r'^v1/assets-bulk/$', api.AssetListUpdateApi.as_view(), name='asset-bulk-update'),
+    url(r'^v1/system-user/(?P<pk>[0-9]+)/auth-info/', api.SystemUserAuthInfoApi.as_view(),
+        name='system-user-auth-info'),
+    url(r'^v1/assets/(?P<pk>\d+)/groups/$',
+        api.AssetUpdateGroupApi.as_view(), name='asset-update-group'),
+
+    url(r'^v1/assets/(?P<pk>\d+)/refresh/$',
+        api.AssetRefreshHardwareView.as_view(), name='asset-refresh'),
+    url(r'^v1/assets/(?P<pk>\d+)/admin-user-test/$',
+        api.AssetAdminUserTestView.as_view(), name='asset-admin-user-test'),
+
+    url(r'^v1/assets/(?P<pk>\d+)/system-users/$',
+        api.SystemUserUpdateApi.as_view(), name='asset-update-system-users'),
+
+    url(r'^v1/groups/(?P<pk>\d+)/push-system-user/$',
+        api.AssetGroupPushSystemUserView.as_view(), name='asset-group-push-system-user'),
+
+    # update the system users, which add and delete the asset to the system user
+    url(r'^v1/system-user/(?P<pk>\d+)/assets/$',
+        api.SystemUserUpdateAssetsApi.as_view(), name='systemuser-update-assets'),
+
+    url(r'^v1/system-user/(?P<pk>\d+)/groups/$',
+        api.SystemUserUpdateAssetGroupApi.as_view(), name='systemuser-update-assetgroups'),
+
+    # update the asset group, which add or delete the asset to the group
+    url(r'^v1/groups/(?P<pk>\d+)/assets/$',
+        api.AssetGroupUpdateApi.as_view(), name='asset-groups-update'),
+
+    # update the asset group, and add or delete the system_user to the group
+    url(r'^v1/groups/(?P<pk>\d+)/system-users/$',
+        api.AssetGroupUpdateSystemUserApi.as_view(), name='asset-groups-update-systemusers'),
+
+    # update the IDC, and add or delete the assets to the IDC
+    url(r'^v1/idc/(?P<pk>\d+)/assets/$',
+        api.IDCUpdateAssetsApi.as_view(), name='idc-update-assets'),
+
+]
+
+urlpatterns += router.urls
+
--- a/apps/assets/urls/views_urls.py
+++ b/apps/assets/urls/views_urls.py
@@ -0,0 +1,56 @@
+# coding:utf-8
+from django.conf.urls import url
+from .. import views
+
+app_name = 'assets'
+
+urlpatterns = [
+    # Resource asset url
+    url(r'^$', views.AssetListView.as_view(), name='asset-index'),
+    url(r'^asset/$', views.AssetListView.as_view(), name='asset-list'),
+    url(r'^asset/create/$', views.AssetCreateView.as_view(), name='asset-create'),
+    url(r'^asset/export/$', views.AssetExportView.as_view(), name='asset-export'),
+    url(r'^asset/import/$', views.BulkImportAssetView.as_view(), name='asset-import'),
+    url(r'^asset/(?P<pk>[0-9]+)/$', views.AssetDetailView.as_view(), name='asset-detail'),
+    url(r'^asset/(?P<pk>[0-9]+)/update/$', views.AssetUpdateView.as_view(), name='asset-update'),
+    url(r'^asset/(?P<pk>[0-9]+)/delete/$', views.AssetDeleteView.as_view(), name='asset-delete'),
+    url(r'^asset-modal$', views.AssetModalListView.as_view(), name='asset-modal-list'),
+    url(r'^asset/update/$', views.AssetBulkUpdateView.as_view(), name='asset-bulk-update'),
+
+    # User asset view
+    url(r'^user-asset/$', views.UserAssetListView.as_view(), name='user-asset-list'),
+
+    # Resource asset group url
+    url(r'^asset-group/$', views.AssetGroupListView.as_view(), name='asset-group-list'),
+    url(r'^asset-group/create/$', views.AssetGroupCreateView.as_view(), name='asset-group-create'),
+    url(r'^asset-group/(?P<pk>[0-9]+)/$', views.AssetGroupDetailView.as_view(), name='asset-group-detail'),
+    url(r'^asset-group/(?P<pk>[0-9]+)/update/$', views.AssetGroupUpdateView.as_view(), name='asset-group-update'),
+    url(r'^asset-group/(?P<pk>[0-9]+)/delete/$', views.AssetGroupDeleteView.as_view(), name='asset-group-delete'),
+
+    # Resource idc url
+    url(r'^idc/$', views.IDCListView.as_view(), name='idc-list'),
+    url(r'^idc/create/$', views.IDCCreateView.as_view(), name='idc-create'),
+    url(r'^idc/(?P<pk>[0-9]+)/$', views.IDCDetailView.as_view(), name='idc-detail'),
+    url(r'^idc/(?P<pk>[0-9]+)/update/', views.IDCUpdateView.as_view(), name='idc-update'),
+    url(r'^idc/(?P<pk>[0-9]+)/delete/$', views.IDCDeleteView.as_view(), name='idc-delete'),
+    url(r'^idc/(?P<pk>[0-9]+)/assets/$', views.IDCAssetsView.as_view(), name='idc-assets'),
+
+    # Resource admin user url
+    url(r'^admin-user/$', views.AdminUserListView.as_view(), name='admin-user-list'),
+    url(r'^admin-user/create/$', views.AdminUserCreateView.as_view(), name='admin-user-create'),
+    url(r'^admin-user/(?P<pk>[0-9]+)/$', views.AdminUserDetailView.as_view(), name='admin-user-detail'),
+    url(r'^admin-user/(?P<pk>[0-9]+)/update/$', views.AdminUserUpdateView.as_view(), name='admin-user-update'),
+    url(r'^admin-user/(?P<pk>[0-9]+)/delete/$', views.AdminUserDeleteView.as_view(), name='admin-user-delete'),
+
+    # Resource system user url
+    url(r'^system-user/$', views.SystemUserListView.as_view(), name='system-user-list'),
+    url(r'^system-user/create/$', views.SystemUserCreateView.as_view(), name='system-user-create'),
+    url(r'^system-user/(?P<pk>[0-9]+)/$', views.SystemUserDetailView.as_view(), name='system-user-detail'),
+    url(r'^system-user/(?P<pk>[0-9]+)/update/$', views.SystemUserUpdateView.as_view(), name='system-user-update'),
+    url(r'^system-user/(?P<pk>[0-9]+)/delete/$', views.SystemUserDeleteView.as_view(), name='system-user-delete'),
+    url(r'^system-user/(?P<pk>[0-9]+)/asset/$', views.SystemUserAssetView.as_view(), name='system-user-asset'),
+    # url(r'^system-user/(?P<pk>[0-9]+)/asset-group$', views.SystemUserAssetGroupView.as_view(),
+    #     name='system-user-asset-group'),
+
+]
+
--- a/apps/assets/utils.py
+++ b/apps/assets/utils.py
@@ -0,0 +1,17 @@
+# ~*~ coding: utf-8 ~*~
+#
+from ops.utils import run_AdHoc
+
+
+def test_admin_user_connective_manual(asset):
+    if not isinstance(asset, list):
+        asset = [asset]
+    task_tuple = (
+        ('ping', ''),
+    )
+    summary, _ = run_AdHoc(task_tuple, asset, record=False)
+    if len(summary['failed']) != 0:
+        return False
+    else:
+        return True
+
--- a/apps/assets/views/init.py
+++ b/apps/assets/views/init.py
@@ -0,0 +1,7 @@
+# coding:utf-8
+from .asset import *
+from .group import *
+from .idc import *
+from .system_user import *
+from .admin_user import *
+
--- a/apps/assets/views/admin_user.py
+++ b/apps/assets/views/admin_user.py
@@ -0,0 +1,112 @@
+# coding:utf-8
+from __future__ import absolute_import, unicode_literals
+from django.utils.translation import ugettext as _
+from django.conf import settings
+from django.views.generic import TemplateView, ListView, View
+from django.views.generic.edit import CreateView, DeleteView, FormView, UpdateView
+from django.urls import reverse_lazy
+from django.contrib.messages.views import SuccessMessageMixin
+from django.views.generic.detail import DetailView, SingleObjectMixin
+
+from .. import forms
+from ..models import Asset, AssetGroup, AdminUser, IDC, SystemUser
+from ..hands import AdminUserRequiredMixin
+
+__all__ = ['AdminUserCreateView', 'AdminUserDetailView',
+           'AdminUserDeleteView', 'AdminUserListView',
+           'AdminUserUpdateView',
+           ]
+
+
+class AdminUserListView(AdminUserRequiredMixin, TemplateView):
+    model = AdminUser
+    template_name = 'assets/admin_user_list.html'
+
+    def get_context_data(self, **kwargs):
+        context = {
+            'app': _('Assets'),
+            'action': _('Admin user list'),
+        }
+        kwargs.update(context)
+        return super(AdminUserListView, self).get_context_data(**kwargs)
+
+
+class AdminUserCreateView(AdminUserRequiredMixin,
+                          SuccessMessageMixin,
+                          CreateView):
+    model = AdminUser
+    form_class = forms.AdminUserForm
+    template_name = 'assets/admin_user_create_update.html'
+    success_url = reverse_lazy('assets:admin-user-list')
+
+    def get_context_data(self, **kwargs):
+        context = {
+            'app': 'assets',
+            'action': 'Create admin user'
+        }
+        kwargs.update(context)
+        return super(AdminUserCreateView, self).get_context_data(**kwargs)
+
+    def get_success_message(self, cleaned_data):
+        success_message = _(
+            'Create admin user <a href="{url}">{name}</a> successfully.'.format(
+                url=reverse_lazy('assets:admin-user-detail',
+                                 kwargs={'pk': self.object.pk}),
+                name=self.object.name,
+            ))
+        return success_message
+
+    def form_invalid(self, form):
+        return super(AdminUserCreateView, self).form_invalid(form)
+
+
+class AdminUserUpdateView(AdminUserRequiredMixin, UpdateView):
+    model = AdminUser
+    form_class = forms.AdminUserForm
+    template_name = 'assets/admin_user_create_update.html'
+
+    def get_context_data(self, **kwargs):
+        context = {
+            'app': 'assets',
+            'action': 'Update admin user'
+        }
+        kwargs.update(context)
+        return super(AdminUserUpdateView, self).get_context_data(**kwargs)
+
+    def get_success_url(self):
+        success_url = reverse_lazy('assets:admin-user-detail',
+                                   kwargs={'pk': self.object.pk})
+        return success_url
+
+
+class AdminUserDetailView(AdminUserRequiredMixin, SingleObjectMixin, ListView):
+    paginate_by = settings.CONFIG.DISPLAY_PER_PAGE
+    template_name = 'assets/admin_user_detail.html'
+    context_object_name = 'admin_user'
+
+    def get(self, request, *args, **kwargs):
+        self.object = self.get_object(queryset=AdminUser.objects.all())
+        return super(AdminUserDetailView, self).get(request, *args, **kwargs)
+
+    def get_queryset(self):
+        return self.object.assets.all()
+
+    def get_context_data(self, **kwargs):
+        asset_groups = AssetGroup.objects.all()
+        assets = self.get_queryset()
+        context = {
+            'app': 'assets',
+            'action': 'Admin user detail',
+            'assets_remain': [asset for asset in Asset.objects.all() if asset not in assets],
+            'asset_groups': asset_groups,
+        }
+        kwargs.update(context)
+        return super(AdminUserDetailView, self).get_context_data(**kwargs)
+
+
+class AdminUserDeleteView(AdminUserRequiredMixin, DeleteView):
+    model = AdminUser
+    template_name = 'assets/delete_confirm.html'
+    success_url = reverse_lazy('assets:admin-user-list')
+
+
--- a/apps/assets/views/asset.py
+++ b/apps/assets/views/asset.py
@@ -0,0 +1,345 @@
+# coding:utf-8
+from __future__ import absolute_import, unicode_literals
+
+import csv
+import json
+import uuid
+import codecs
+import chardet
+from io import StringIO
+from collections import defaultdict
+
+from django.conf import settings
+from django.utils.translation import ugettext_lazy as _
+from django.views.generic import TemplateView, ListView, View
+from django.views.generic.edit import CreateView, DeleteView, FormView, UpdateView
+from django.urls import reverse_lazy
+from django.views.generic.detail import DetailView, SingleObjectMixin
+from django.http import HttpResponse, JsonResponse, HttpResponseRedirect
+from django.views.decorators.csrf import csrf_protect, csrf_exempt
+from django.utils.decorators import method_decorator
+from django.core.cache import cache
+from django.utils import timezone
+from django.contrib.auth.mixins import LoginRequiredMixin
+from django.shortcuts import get_object_or_404, redirect, reverse
+
+from common.mixins import JSONResponseMixin
+from common.utils import get_object_or_none
+from .. import forms
+from ..models import Asset, AssetGroup, AdminUser, IDC, SystemUser
+from ..hands import AdminUserRequiredMixin
+from ..tasks import update_assets_hardware_info
+
+
+__all__ = ['AssetListView', 'AssetCreateView', 'AssetUpdateView',
+           'UserAssetListView', 'AssetBulkUpdateView', 'AssetDetailView',
+           'AssetModalListView', 'AssetDeleteView', 'AssetExportView',
+           'BulkImportAssetView',
+           ]
+
+
+class AssetListView(AdminUserRequiredMixin, TemplateView):
+    template_name = 'assets/asset_list.html'
+
+    def get_context_data(self, **kwargs):
+        context = {
+            'app': 'Assets',
+            'action': 'Asset list',
+            'groups': AssetGroup.objects.all(),
+            'system_users': SystemUser.objects.all(),
+            # 'form': forms.AssetBulkUpdateForm(),
+        }
+        kwargs.update(context)
+        return super(AssetListView, self).get_context_data(**kwargs)
+
+
+class UserAssetListView(LoginRequiredMixin, TemplateView):
+    template_name = 'assets/user_asset_list.html'
+
+    def get_context_data(self, **kwargs):
+        context = {
+            'app': 'Assets',
+            'action': 'Asset list',
+            'system_users': SystemUser.objects.all(),
+        }
+        kwargs.update(context)
+        return super(UserAssetListView, self).get_context_data(**kwargs)
+
+
+class AssetCreateView(AdminUserRequiredMixin, CreateView):
+    model = Asset
+    form_class = forms.AssetCreateForm
+    template_name = 'assets/asset_create.html'
+    success_url = reverse_lazy('assets:asset-list')
+
+    def form_valid(self, form):
+        self.asset = asset = form.save()
+        asset.created_by = self.request.user.username or 'Admin'
+        asset.date_created = timezone.now()
+        asset.save()
+        return super(AssetCreateView, self).form_valid(form)
+
+    def get_context_data(self, **kwargs):
+        context = {
+            'app': 'Assets',
+            'action': 'Create asset',
+        }
+        kwargs.update(context)
+        return super(AssetCreateView, self).get_context_data(**kwargs)
+
+    def get_success_url(self):
+        update_assets_hardware_info.delay([self.asset._to_secret_json()])
+        return super(AssetCreateView, self).get_success_url()
+
+
+class AssetModalListView(AdminUserRequiredMixin, ListView):
+    paginate_by = settings.CONFIG.DISPLAY_PER_PAGE
+    model = Asset
+    context_object_name = 'asset_modal_list'
+    template_name = 'assets/asset_modal_list.html'
+
+    def get_context_data(self, **kwargs):
+        assets = Asset.objects.all()
+        assets_id = self.request.GET.get('assets_id', '')
+        assets_id_list = [i for i in assets_id.split(',') if i.isdigit()]
+        context = {
+            'all_assets': assets_id_list,
+            'assets': assets
+        }
+        kwargs.update(context)
+        return super(AssetModalListView, self).get_context_data(**kwargs)
+
+
+class AssetBulkUpdateView(AdminUserRequiredMixin, ListView):
+    model = Asset
+    form_class = forms.AssetBulkUpdateForm
+    template_name = 'assets/asset_bulk_update.html'
+    success_url = reverse_lazy('assets:asset-list')
+
+    def get(self, request, *args, **kwargs):
+        assets_id = self.request.GET.get('assets_id', '')
+        self.assets_id_list = [int(i) for i in assets_id.split(',') if i.isdigit()]
+
+        if kwargs.get('form'):
+            self.form = kwargs['form']
+        elif assets_id:
+            self.form = self.form_class(
+                initial={'assets': self.assets_id_list}
+            )
+        else:
+            self.form = self.form_class()
+        return super(AssetBulkUpdateView, self).get(request, *args, **kwargs)
+
+    def post(self, request, *args, **kwargs):
+        form = self.form_class(request.POST)
+        if form.is_valid():
+            form.save()
+            return redirect(self.success_url)
+        else:
+            return self.get(request, form=form, *args, **kwargs)
+
+    def get_context_data(self, **kwargs):
+        # assets_list = Asset.objects.filter(id__in=self.assets_id_list)
+        context = {
+            'app': 'Assets',
+            'action': 'Bulk update asset',
+            'form': self.form,
+            'assets_selected': self.assets_id_list,
+            'assets': Asset.objects.all(),
+        }
+        kwargs.update(context)
+        return super(AssetBulkUpdateView, self).get_context_data(**kwargs)
+
+
+class AssetUpdateView(AdminUserRequiredMixin, UpdateView):
+    model = Asset
+    form_class = forms.AssetUpdateForm
+    template_name = 'assets/asset_update.html'
+    success_url = reverse_lazy('assets:asset-list')
+
+    def get_context_data(self, **kwargs):
+        context = {
+            'app': 'Assets',
+            'action': 'Update asset',
+        }
+        kwargs.update(context)
+        return super(AssetUpdateView, self).get_context_data(**kwargs)
+
+    def form_invalid(self, form):
+        print(form.errors)
+        return super(AssetUpdateView, self).form_invalid(form)
+
+
+class AssetDeleteView(AdminUserRequiredMixin, DeleteView):
+    model = Asset
+    template_name = 'assets/delete_confirm.html'
+    success_url = reverse_lazy('assets:asset-list')
+
+
+class AssetDetailView(DetailView):
+    model = Asset
+    context_object_name = 'asset'
+    template_name = 'assets/asset_detail.html'
+
+    def get_context_data(self, **kwargs):
+        asset_groups = self.object.groups.all()
+        system_users = self.object.system_users.all()
+        context = {
+            'app': 'Assets',
+            'action': 'Asset detail',
+            'asset_groups_remain': [asset_group for asset_group in AssetGroup.objects.all()
+                                    if asset_group not in asset_groups],
+            'asset_groups': asset_groups,
+            'system_users_all': SystemUser.objects.all(),
+            'system_users': system_users,
+        }
+        kwargs.update(context)
+        return super(AssetDetailView, self).get_context_data(**kwargs)
+
+
+@method_decorator(csrf_exempt, name='dispatch')
+class AssetExportView(View):
+    def get(self, request):
+        spm = request.GET.get('spm', '')
+        assets_id_default = [Asset.objects.first().id] if Asset.objects.first() else [1]
+        assets_id = cache.get(spm, assets_id_default)
+        fields = [
+            field for field in Asset._meta.fields
+            if field.name not in [
+                'date_created'
+            ]
+        ]
+        filename = 'assets-{}.csv'.format(
+            timezone.localtime(timezone.now()).strftime('%Y-%m-%d_%H-%M-%S'))
+        response = HttpResponse(content_type='text/csv')
+        response['Content-Disposition'] = 'attachment; filename="%s"' % filename
+        response.write(codecs.BOM_UTF8)
+        assets = Asset.objects.filter(id__in=assets_id)
+        writer = csv.writer(response, dialect='excel',
+                            quoting=csv.QUOTE_MINIMAL)
+
+        header = [field.verbose_name for field in fields]
+        header.append(_('Asset groups'))
+        writer.writerow(header)
+
+        for asset in assets:
+            groups = ','.join([group.name for group in asset.groups.all()])
+            data = [getattr(asset, field.name) for field in fields]
+            data.append(groups)
+            writer.writerow(data)
+        return response
+
+    def post(self, request, *args, **kwargs):
+        try:
+            assets_id = json.loads(request.body).get('assets_id', [])
+        except ValueError:
+            return HttpResponse('Json object not valid', status=400)
+        spm = uuid.uuid4().hex
+        cache.set(spm, assets_id, 300)
+        url = reverse_lazy('assets:asset-export') + '?spm=%s' % spm
+        return JsonResponse({'redirect': url})
+
+
+class BulkImportAssetView(AdminUserRequiredMixin, JSONResponseMixin, FormView):
+    form_class = forms.FileForm
+
+    def form_valid(self, form):
+        f = form.cleaned_data['file']
+        det_result = chardet.detect(f.read())
+        f.seek(0)  # reset file seek index
+        file_data = f.read().decode(det_result['encoding']).strip(codecs.BOM_UTF8.decode())
+        csv_file = StringIO(file_data)
+        reader = csv.reader(csv_file)
+        csv_data = [row for row in reader]
+        fields = [
+            field for field in Asset._meta.fields
+            if field.name not in [
+                'date_created'
+            ]
+        ]
+        header_ = csv_data[0]
+        mapping_reverse = {field.verbose_name: field.name for field in fields}
+        mapping_reverse[_('Asset groups')] = 'groups'
+        attr = [mapping_reverse.get(n, None) for n in header_]
+        if None in attr:
+            data = {'valid': False,
+                    'msg': 'Must be same format as '
+                           'template or export file'}
+            return self.render_json_response(data)
+
+        created, updated, failed = [], [], []
+        assets = []
+        for row in csv_data[1:]:
+            if set(row) == {''}:
+                continue
+
+            asset_dict = dict(zip(attr, row))
+            id_ = asset_dict.pop('id', 0)
+
+            try:
+                id_ = int(id_)
+            except ValueError:
+                id_ = 0
+
+            asset = get_object_or_none(Asset, id=id_)
+            for k, v in asset_dict.items():
+                if k == 'idc':
+                    v = get_object_or_none(IDC, name=v)
+                elif k == 'is_active':
+                    v = bool(v)
+                elif k == 'admin_user':
+                    v = get_object_or_none(AdminUser, name=v)
+                elif k in ['port', 'cabinet_pos', 'cpu_count', 'cpu_cores']:
+                    try:
+                        v = int(v)
+                    except ValueError:
+                        v = 0
+                elif k == 'groups':
+                    groups_name = v.split(',')
+                    v = AssetGroup.objects.filter(name__in=groups_name)
+                else:
+                    continue
+                asset_dict[k] = v
+
+            if not asset:
+                try:
+                    groups = asset_dict.pop('groups')
+                    if len(Asset.objects.filter(hostname=asset_dict.get('hostname'))):
+                        raise Exception(_('already exists'))
+                    asset = Asset.objects.create(**asset_dict)
+                    asset.groups.set(groups)
+                    created.append(asset_dict['hostname'])
+                    assets.append(asset)
+                except Exception as e:
+                    failed.append('%s: %s' % (asset_dict['hostname'], str(e)))
+            else:
+                for k, v in asset_dict.items():
+                    if k == 'groups':
+                        asset.groups.set(v)
+                        continue
+                    if v:
+                        setattr(asset, k, v)
+                try:
+                    asset.save()
+                    updated.append(asset_dict['hostname'])
+                except Exception as e:
+                    failed.append('%s: %s' % (asset_dict['hostname'], str(e)))
+
+        if assets:
+            update_assets_hardware_info.delay([asset._to_secret_json() for asset in assets])
+
+
+        data = {
+            'created': created,
+            'created_info': 'Created {}'.format(len(created)),
+            'updated': updated,
+            'updated_info': 'Updated {}'.format(len(updated)),
+            'failed': failed,
+            'failed_info': 'Failed {}'.format(len(failed)),
+            'valid': True,
+            'msg': 'Created: {}. Updated: {}, Error: {}'.format(
+                len(created), len(updated), len(failed))
+        }
+        return self.render_json_response(data)
+
+
--- a/apps/assets/views/group.py
+++ b/apps/assets/views/group.py
@@ -0,0 +1,111 @@
+# coding:utf-8
+from __future__ import absolute_import, unicode_literals
+
+from django.utils.translation import ugettext as _
+from django.views.generic import TemplateView, ListView, View
+from django.views.generic.edit import CreateView, DeleteView, FormView, UpdateView
+from django.urls import reverse_lazy
+from django.views.generic.detail import DetailView, SingleObjectMixin
+from django.shortcuts import get_object_or_404, reverse, redirect
+
+from .. import forms
+from ..models import Asset, AssetGroup, AdminUser, IDC, SystemUser
+from ..hands import AdminUserRequiredMixin
+
+
+__all__ = ['AssetGroupCreateView', 'AssetGroupDetailView',
+           'AssetGroupUpdateView', 'AssetGroupListView',
+           'AssetGroupDeleteView',
+           ]
+
+
+class AssetGroupCreateView(AdminUserRequiredMixin, CreateView):
+    model = AssetGroup
+    form_class = forms.AssetGroupForm
+    template_name = 'assets/asset_group_create.html'
+    success_url = reverse_lazy('assets:asset-group-list')
+
+    def get_context_data(self, **kwargs):
+        context = {
+            'app': _('Assets'),
+            'action': _('Create asset group'),
+            'assets_count': 0,
+        }
+        kwargs.update(context)
+        return super(AssetGroupCreateView, self).get_context_data(**kwargs)
+
+    def form_valid(self, form):
+        asset_group = form.save()
+        assets_id_list = self.request.POST.getlist('assets', [])
+        assets = [get_object_or_404(Asset, id=int(asset_id))
+                  for asset_id in assets_id_list]
+        asset_group.created_by = self.request.user.username or 'Admin'
+        asset_group.assets.add(*tuple(assets))
+        asset_group.save()
+        return super(AssetGroupCreateView, self).form_valid(form)
+
+
+class AssetGroupListView(AdminUserRequiredMixin, TemplateView):
+    template_name = 'assets/asset_group_list.html'
+
+    def get_context_data(self, **kwargs):
+        context = {
+            'app': _('Assets'),
+            'action': _('Asset group list'),
+            'assets': Asset.objects.all(),
+            'system_users': SystemUser.objects.all(),
+            'keyword': self.request.GET.get('keyword', '')
+        }
+        kwargs.update(context)
+        return super(AssetGroupListView, self).get_context_data(**kwargs)
+
+
+class AssetGroupDetailView(AdminUserRequiredMixin, DetailView):
+    model = AssetGroup
+    template_name = 'assets/asset_group_detail.html'
+    context_object_name = 'asset_group'
+
+    def get_context_data(self, **kwargs):
+        assets_remain = Asset.objects.exclude(id__in=self.object.assets.all())
+        system_users = SystemUser.objects.all()
+        system_users_remain = SystemUser.objects.exclude(id__in=system_users)
+        context = {
+            'app': _('Assets'),
+            'action': _('Asset group detail'),
+            'assets_remain': assets_remain,
+            'assets': [asset for asset in Asset.objects.all()
+                       if asset not in assets_remain],
+            'system_users': system_users,
+            'system_users_remain': system_users_remain,
+        }
+        kwargs.update(context)
+        return super(AssetGroupDetailView, self).get_context_data(**kwargs)
+
+
+class AssetGroupUpdateView(AdminUserRequiredMixin, UpdateView):
+    model = AssetGroup
+    form_class = forms.AssetGroupForm
+    template_name = 'assets/asset_group_create.html'
+    success_url = reverse_lazy('assets:asset-group-list')
+
+    def get(self, request, *args, **kwargs):
+        self.object = self.get_object(queryset=AssetGroup.objects.all())
+        return super(AssetGroupUpdateView, self).get(request, *args, **kwargs)
+
+    def get_context_data(self, **kwargs):
+        assets_all = self.object.assets.all()
+        context = {
+            'app': _('Assets'),
+            'action': _('Create asset group'),
+            'assets_on_list': assets_all,
+            'assets_count': len(assets_all),
+            'group_id': self.object.id,
+        }
+        kwargs.update(context)
+        return super(AssetGroupUpdateView, self).get_context_data(**kwargs)
+
+
+class AssetGroupDeleteView(AdminUserRequiredMixin, DeleteView):
+    template_name = 'assets/delete_confirm.html'
+    model = AssetGroup
+    success_url = reverse_lazy('assets:asset-group-list')
--- a/apps/assets/views/idc.py
+++ b/apps/assets/views/idc.py
@@ -0,0 +1,101 @@
+# coding:utf-8
+from __future__ import absolute_import, unicode_literals
+from django.utils.translation import ugettext as _
+from django.views.generic import TemplateView, ListView, View
+from django.views.generic.edit import CreateView, DeleteView, FormView, UpdateView
+from django.urls import reverse_lazy
+from django.views.generic.detail import DetailView, SingleObjectMixin
+from .. import forms
+from ..models import Asset, AssetGroup, AdminUser, IDC, SystemUser
+from ..hands import AdminUserRequiredMixin
+
+
+__all__ = ['IDCListView', 'IDCCreateView', 'IDCUpdateView',
+           'IDCDetailView', 'IDCDeleteView', 'IDCAssetsView']
+
+
+class IDCListView(AdminUserRequiredMixin, TemplateView):
+    template_name = 'assets/idc_list.html'
+
+    def get_context_data(self, **kwargs):
+        context = {
+            'app': _('Assets'),
+            'action': _('IDC list'),
+            # 'keyword': self.request.GET.get('keyword', '')
+        }
+        kwargs.update(context)
+        return super(IDCListView, self).get_context_data(**kwargs)
+
+
+class IDCCreateView(AdminUserRequiredMixin, CreateView):
+    model = IDC
+    form_class = forms.IDCForm
+    template_name = 'assets/idc_create_update.html'
+    success_url = reverse_lazy('assets:idc-list')
+
+    def get_context_data(self, **kwargs):
+        context = {
+            'app': _('assets'),
+            'action': _('Create IDC'),
+        }
+        kwargs.update(context)
+        return super(IDCCreateView, self).get_context_data(**kwargs)
+
+    def form_valid(self, form):
+        idc = form.save(commit=False)
+        idc.created_by = self.request.user.username or 'System'
+        idc.save()
+        return super(IDCCreateView, self).form_valid(form)
+
+
+class IDCUpdateView(AdminUserRequiredMixin, UpdateView):
+    model = IDC
+    form_class = forms.IDCForm
+    template_name = 'assets/idc_create_update.html'
+    context_object_name = 'idc'
+    success_url = reverse_lazy('assets:idc-list')
+
+    def form_valid(self, form):
+        idc = form.save(commit=False)
+        idc.save()
+        return super(IDCUpdateView, self).form_valid(form)
+
+    def get_context_data(self, **kwargs):
+        context = {
+            'app': _('assets'),
+            'action': _('Update IDC'),
+        }
+        kwargs.update(context)
+        return super(IDCUpdateView, self).get_context_data(**kwargs)
+
+
+class IDCDetailView(AdminUserRequiredMixin, DetailView):
+    model = IDC
+    template_name = 'assets/idc_detail.html'
+    context_object_name = 'idc'
+
+
+class IDCAssetsView(AdminUserRequiredMixin, DetailView):
+    model = IDC
+    template_name = 'assets/idc_assets.html'
+    context_object_name = 'idc'
+
+    def get_context_data(self, **kwargs):
+        assets_remain = Asset.objects.exclude(id__in=self.object.assets.all())
+
+        context = {
+            'app': _('Assets'),
+            'action': _('Asset detail'),
+            'groups': AssetGroup.objects.all(),
+            'system_users': SystemUser.objects.all(),
+            'assets_remain': assets_remain,
+            'assets': [asset for asset in Asset.objects.all() if asset not in assets_remain],
+        }
+        kwargs.update(context)
+        return super(IDCAssetsView, self).get_context_data(**kwargs)
+
+
+class IDCDeleteView(AdminUserRequiredMixin, DeleteView):
+    model = IDC
+    template_name = 'assets/delete_confirm.html'
+    success_url = reverse_lazy('assets:idc-list')
--- a/apps/assets/views/system_user.py
+++ b/apps/assets/views/system_user.py
@@ -0,0 +1,147 @@
+# ~*~ coding: utf-8 ~*~
+
+from __future__ import absolute_import, unicode_literals
+from django.utils.translation import ugettext as _
+from django.conf import settings
+from django.db import transaction
+from django.views.generic import TemplateView, ListView
+from django.views.generic.edit import CreateView, DeleteView, UpdateView
+from django.urls import reverse_lazy
+from django.contrib.messages.views import SuccessMessageMixin
+from django.views.generic.detail import DetailView, SingleObjectMixin
+
+from .. import forms
+from ..models import Asset, AssetGroup, SystemUser
+from ..hands import AdminUserRequiredMixin
+from perms.utils import associate_system_users_and_assets
+
+
+__all__ = ['SystemUserCreateView', 'SystemUserUpdateView',
+           'SystemUserDetailView', 'SystemUserDeleteView',
+           'SystemUserAssetView', 'SystemUserListView',
+           ]
+
+
+class SystemUserListView(AdminUserRequiredMixin, TemplateView):
+    template_name = 'assets/system_user_list.html'
+
+    def get_context_data(self, **kwargs):
+        context = {
+            'app': _('Assets'),
+            'action': _('System user list'),
+        }
+        kwargs.update(context)
+        return super(SystemUserListView, self).get_context_data(**kwargs)
+
+
+class SystemUserCreateView(AdminUserRequiredMixin, SuccessMessageMixin, CreateView):
+    model = SystemUser
+    form_class = forms.SystemUserForm
+    template_name = 'assets/system_user_create.html'
+    success_url = reverse_lazy('assets:system-user-list')
+
+    @transaction.atomic
+    def post(self, request, *args, **kwargs):
+        return super(SystemUserCreateView, self).post(request, *args, **kwargs)
+
+    def get_context_data(self, **kwargs):
+        context = {
+            'app': _('Assets'),
+            'action': _('Create system user'),
+        }
+        kwargs.update(context)
+        return super(SystemUserCreateView, self).get_context_data(**kwargs)
+
+    def get_success_message(self, cleaned_data):
+        url = reverse_lazy('assets:system-user-detail',
+                           kwargs={'pk': self.object.pk}),
+        success_message = _(
+            'Create system user <a href="{url}">{name}</a> '
+            'successfully.'.format(url=url, name=self.object.name)
+        )
+
+        return success_message
+
+
+class SystemUserUpdateView(AdminUserRequiredMixin, UpdateView):
+    model = SystemUser
+    form_class = forms.SystemUserUpdateForm
+    template_name = 'assets/system_user_update.html'
+
+    def get_context_data(self, **kwargs):
+        context = {
+            'app': _('Assets'),
+            'action': _('Update system user')
+        }
+        kwargs.update(context)
+        return super(SystemUserUpdateView, self).get_context_data(**kwargs)
+
+    def form_valid(self, form):
+        response = super(SystemUserUpdateView, self).form_valid(form)
+        system_user = self.object
+        assets = system_user.assets.all()
+        asset_groups = system_user.asset_groups.all()
+        associate_system_users_and_assets([system_user], assets, asset_groups, force=True)
+        return response
+
+    def get_success_url(self):
+        success_url = reverse_lazy('assets:system-user-detail',
+                                   kwargs={'pk': self.object.pk})
+        return success_url
+
+
+class SystemUserDetailView(AdminUserRequiredMixin, DetailView):
+    template_name = 'assets/system_user_detail.html'
+    context_object_name = 'system_user'
+    model = SystemUser
+
+    def get_context_data(self, **kwargs):
+        context = {
+            'app': _('Assets'),
+            'action': _('System user detail')
+        }
+        kwargs.update(context)
+        return super(SystemUserDetailView, self).get_context_data(**kwargs)
+
+
+class SystemUserDeleteView(AdminUserRequiredMixin, DeleteView):
+    model = SystemUser
+    template_name = 'assets/delete_confirm.html'
+    success_url = reverse_lazy('assets:system-user-list')
+
+
+class SystemUserAssetView(AdminUserRequiredMixin, SingleObjectMixin, ListView):
+    paginate_by = settings.CONFIG.DISPLAY_PER_PAGE
+    template_name = 'assets/system_user_asset.html'
+    context_object_name = 'system_user'
+
+    def get(self, request, *args, **kwargs):
+        self.object = self.get_object(queryset=SystemUser.objects.all())
+        return super(SystemUserAssetView, self).get(request, *args, **kwargs)
+
+    def get_asset_groups(self):
+        return self.object.asset_groups.all()
+
+    # Todo: queryset default order by connectivity, need ops support
+    def get_queryset(self):
+        return list(self.object.get_assets())
+
+    def get_context_data(self, **kwargs):
+        asset_groups = self.get_asset_groups()
+        assets = self.get_queryset()
+        context = {
+            'app': 'assets',
+            'action': 'System user asset',
+            'assets_remain': [asset for asset in Asset.objects.all() if asset not in assets],
+            'asset_groups': asset_groups,
+            'asset_groups_remain': [asset_group for asset_group in AssetGroup.objects.all()
+                                    if asset_group not in asset_groups]
+        }
+        kwargs.update(context)
+        return super(SystemUserAssetView, self).get_context_data(**kwargs)
+
+
+
+
+
+
--- a/apps/audits/init.py
+++ b/apps/audits/init.py
@@ -0,0 +1 @@
+
--- a/apps/audits/api.py
+++ b/apps/audits/api.py
@@ -0,0 +1,92 @@
+# ~*~ coding: utf-8 ~*~
+# 
+
+
+from __future__ import absolute_import, unicode_literals
+
+from rest_framework import generics, viewsets
+from rest_framework_bulk import BulkModelViewSet
+
+from audits.backends import command_store, record_store
+from audits.backends.command.serializers import CommandLogSerializer
+from audits.backends.record.serializers import RecordSerializer
+from . import models, serializers
+from .hands import IsSuperUserOrAppUser, IsAppUser
+
+
+class ProxyLogReceiveView(generics.CreateAPIView):
+    queryset = models.ProxyLog.objects.all()
+    serializer_class = serializers.ProxyLogSerializer
+    permission_classes = (IsAppUser,)
+
+    def get_serializer(self, *args, **kwargs):
+        kwargs['data']['terminal'] = self.request.user.terminal.name
+        return super(ProxyLogReceiveView, self).get_serializer(*args, **kwargs)
+
+
+class ProxyLogViewSet(viewsets.ModelViewSet):
+    """User proxy to backend server need call this api.
+
+    params: {
+        "username": "",
+        "name": "",
+        "hostname": "",
+        "ip": "",
+        "terminal": "",
+        "login_type": "",
+        "system_user": "",
+        "was_failed": "",
+        "date_start": ""
+    }
+
+    """
+
+    queryset = models.ProxyLog.objects.all()
+    serializer_class = serializers.ProxyLogSerializer
+    permission_classes = (IsSuperUserOrAppUser,)
+
+
+class CommandLogViewSet(BulkModelViewSet):
+    """接受app发送来的command log, 格式如下
+    {
+        "proxy_log_id": 23,
+        "user": "admin",
+        "asset": "localhost",
+        "system_user": "web",
+        "command_no": 1,
+        "command": "whoami",
+        "output": "d2hvbWFp",  # base64.b64encode(s)
+        "timestamp": 1485238673.0
+    }
+
+    """
+    queryset = command_store.all()
+    serializer_class = CommandLogSerializer
+    permission_classes = (IsSuperUserOrAppUser,)
+
+
+class RecordLogViewSet(BulkModelViewSet):
+    """接受app发送来的record log, 格式如下
+        {
+            "proxy_log_id": 23,
+            "output": "d2hvbWFp",  # base64.b64encode(s)
+            "timestamp": 1485238673.0
+        }
+    """
+
+    serializer_class = RecordSerializer
+    permission_classes = (IsSuperUserOrAppUser,)
+
+    def get_queryset(self):
+        filter_kwargs = {}
+        proxy_log_id = self.request.query_params.get('proxy_log_id')
+        data_from_ts = self.request.query_params.get('date_from_ts')
+        if proxy_log_id:
+            filter_kwargs['proxy_log_id'] = proxy_log_id
+        if data_from_ts:
+            filter_kwargs['date_from_ts'] = data_from_ts
+        if filter_kwargs:
+            return record_store.filter(**filter_kwargs)
+        else:
+            return record_store.all()
+
--- a/apps/audits/apps.py
+++ b/apps/audits/apps.py
@@ -0,0 +1,7 @@
+from __future__ import unicode_literals
+
+from django.apps import AppConfig
+
+
+class AuditsConfig(AppConfig):
+    name = 'audits'
--- a/apps/audits/backends/init.py
+++ b/apps/audits/backends/init.py
@@ -0,0 +1,10 @@
+from importlib import import_module
+from django.conf import settings
+
+command_engine = import_module(settings.COMMAND_STORE_BACKEND)
+command_store = command_engine.CommandStore()
+record_engine = import_module(settings.RECORD_STORE_BACKEND)
+record_store = record_engine.RecordStore()
+from .command.serializers import CommandLogSerializer
+
+
--- a/apps/audits/backends/command/init.py
+++ b/apps/audits/backends/command/init.py
--- a/apps/audits/backends/command/base.py
+++ b/apps/audits/backends/command/base.py
@@ -0,0 +1,19 @@
+# coding: utf-8
+import abc
+
+
+class CommandBase(object):
+    __metaclass__ = abc.ABCMeta
+
+    @abc.abstractmethod
+    def save(self, proxy_log_id, user, asset, system_user,
+             command_no, command, output, timestamp):
+        pass
+
+    @abc.abstractmethod
+    def filter(self, date_from_ts=None, date_to_ts=None, user='',
+               asset='', system_user='', command='', proxy_log_id=0):
+        pass
+
+
+
--- a/apps/audits/backends/command/db.py
+++ b/apps/audits/backends/command/db.py
@@ -0,0 +1,45 @@
+# ~*~ coding: utf-8 ~*~
+
+from .base import CommandBase
+from audits.models import CommandLog
+
+
+class CommandStore(CommandBase):
+    model = CommandLog
+    queryset = []
+
+    def save(self, proxy_log_id, user, asset, system_user,
+             command_no, command, output, timestamp):
+        self.model.objects.create(
+            proxy_log_id=proxy_log_id, user=user, asset=asset,
+            system_user=system_user, command_no=command_no,
+            command=command, output=output, timestamp=timestamp
+        )
+
+    def filter(self, date_from_ts=None, date_to_ts=None, user='',
+               asset='', system_user='', command='', proxy_log_id=0):
+        filter_kwargs = {}
+
+        if date_from_ts:
+            filter_kwargs['timestamp__gte'] = date_from_ts
+        if date_to_ts:
+            filter_kwargs['timestamp__lte'] = date_to_ts
+        if user:
+            filter_kwargs['user'] = user
+        if asset:
+            filter_kwargs['asset'] = asset
+        if system_user:
+            filter_kwargs['system_user'] = system_user
+        if command:
+            filter_kwargs['command__icontains'] = command
+        if proxy_log_id:
+            filter_kwargs['proxy_log_id'] = proxy_log_id
+
+        if filter_kwargs:
+            self.queryset = self.model.objects.filter(**filter_kwargs)
+        return self.queryset
+
+    def all(self):
+        """返回所有数据"""
+        return self.model.objects.iterator()
+
--- a/apps/audits/backends/command/serializers.py
+++ b/apps/audits/backends/command/serializers.py
@@ -0,0 +1,21 @@
+# ~*~ coding: utf-8 ~*~
+import base64
+from rest_framework import serializers
+from audits.models import CommandLog
+from audits.backends import command_store
+
+
+class CommandLogSerializer(serializers.ModelSerializer):
+    """使用这个类作为基础Command Log Serializer类, 用来序列化"""
+
+    class Meta:
+        model = CommandLog
+        fields = '__all__'
+
+    def create(self, validated_data):
+        try:
+            output = validated_data['output']
+            validated_data['output'] = base64.b64decode(output)
+        except IndexError:
+            pass
+        return command_store.save(**dict(validated_data))
--- a/apps/audits/backends/record/init.py
+++ b/apps/audits/backends/record/init.py
@@ -0,0 +1,2 @@
+# ~*~ coding: utf-8 ~*~
+
--- a/apps/audits/backends/record/base.py
+++ b/apps/audits/backends/record/base.py
@@ -0,0 +1,14 @@
+# coding: utf-8
+import abc
+
+
+class RecordBase(object):
+    __metaclass__ = abc.ABCMeta
+
+    @abc.abstractmethod
+    def save(self, proxy_log_id, output, timestamp):
+        pass
+
+    @abc.abstractmethod
+    def filter(self, date_from_ts=None, proxy_log_id=None):
+        pass
--- a/apps/audits/backends/record/db.py
+++ b/apps/audits/backends/record/db.py
@@ -0,0 +1,31 @@
+# ~*~ coding: utf-8 ~*~
+
+from .base import RecordBase
+from audits.models import RecordLog
+
+
+class RecordStore(RecordBase):
+    model = RecordLog
+    queryset = []
+
+    def save(self, proxy_log_id, output, timestamp):
+        return self.model.objects.create(
+            proxy_log_id=proxy_log_id, output=output, timestamp=timestamp
+        )
+
+    def filter(self, date_from_ts=None, proxy_log_id=''):
+        filter_kwargs = {}
+
+        if date_from_ts:
+            filter_kwargs['timestamp__gte'] = date_from_ts
+        if proxy_log_id:
+            filter_kwargs['proxy_log_id'] = proxy_log_id
+
+        if filter_kwargs:
+            self.queryset = self.model.objects.filter(**filter_kwargs)
+        return self.queryset
+
+    def all(self):
+        """返回所有数据"""
+        return self.model.objects.all()
+
--- a/apps/audits/backends/record/serializers.py
+++ b/apps/audits/backends/record/serializers.py
@@ -0,0 +1,20 @@
+# ~*~ coding: utf-8 ~*~
+import base64
+from rest_framework import serializers
+from audits.models import RecordLog
+from audits.backends import record_store
+
+
+class RecordSerializer(serializers.ModelSerializer):
+    """使用这个类作为基础Command Log Serializer类, 用来序列化"""
+    class Meta:
+        model = RecordLog
+        fields = '__all__'
+
+    def create(self, validated_data):
+        try:
+            output = validated_data['output']
+            validated_data['output'] = base64.b64decode(output)
+        except IndexError:
+            pass
+        return record_store.save(**dict(validated_data))
--- a/apps/audits/hands.py
+++ b/apps/audits/hands.py
@@ -0,0 +1,8 @@
+# ~*~ coding: utf-8 ~*~
+#
+
+from users.utils import AdminUserRequiredMixin
+from users.models import User
+from assets.models import Asset, SystemUser
+from users.permissions import IsSuperUserOrAppUser, IsAppUser
+from applications.models import Terminal
--- a/apps/audits/migrations/init.py
+++ b/apps/audits/migrations/init.py
--- a/apps/audits/models.py
+++ b/apps/audits/models.py
@@ -0,0 +1,94 @@
+# -*- coding: utf-8 -*-
+#
+
+from __future__ import unicode_literals
+
+from django.db import models
+from django.utils.translation import ugettext_lazy as _
+
+
+class LoginLog(models.Model):
+    LOGIN_TYPE_CHOICE = (
+        ('W', 'Web'),
+        ('ST', 'SSH Terminal'),
+        ('WT', 'Web Terminal')
+    )
+
+    username = models.CharField(max_length=20, verbose_name=_('Username'))
+    name = models.CharField(max_length=20, blank=True, verbose_name=_('Name'))
+    login_type = models.CharField(choices=LOGIN_TYPE_CHOICE, max_length=2,
+                                  verbose_name=_('Login type'))
+    login_ip = models.GenericIPAddressField(verbose_name=_('Login ip'))
+    login_city = models.CharField(max_length=254, blank=True, null=True,
+                                  verbose_name=_('Login city'))
+    user_agent = models.CharField(max_length=254, blank=True, null=True,
+                                  verbose_name=_('User agent'))
+    date_login = models.DateTimeField(auto_now_add=True,
+                                      verbose_name=_('Date login'))
+
+    class Meta:
+        db_table = 'login_log'
+        ordering = ['-date_login', 'username']
+
+
+class ProxyLog(models.Model):
+    LOGIN_TYPE_CHOICE = (
+        ('ST', 'SSH Terminal'),
+        ('WT', 'Web Terminal'),
+    )
+
+    user = models.CharField(max_length=32,  verbose_name=_('User'))
+    asset = models.CharField(max_length=32, verbose_name=_('Asset'))
+    system_user = models.CharField(max_length=32, verbose_name=_('System user'))
+    login_type = models.CharField(
+        choices=LOGIN_TYPE_CHOICE, max_length=2, blank=True,
+        null=True, verbose_name=_('Login type'))
+    terminal = models.CharField(
+        max_length=32, blank=True, null=True, verbose_name=_('Terminal'))
+    is_failed = models.BooleanField(
+        default=False, verbose_name=_('Did connect failed'))
+    is_finished = models.BooleanField(
+        default=False, verbose_name=_('Is finished'))
+    date_start = models.DateTimeField(
+        auto_created=True, verbose_name=_('Date start'))
+    date_finished = models.DateTimeField(
+        null=True, verbose_name=_('Date finished'))
+
+    def __unicode__(self):
+        return '%s-%s-%s' % (self.user, self.asset, self.system_user)
+
+    def commands(self):
+        from audits.backends import command_store
+        return command_store.filter(proxy_log_id=self.id)
+
+    class Meta:
+        ordering = ['-date_start', 'user']
+
+
+class CommandLog(models.Model):
+    proxy_log_id = models.IntegerField(db_index=True)
+    user = models.CharField(max_length=48, db_index=True)
+    asset = models.CharField(max_length=128, db_index=True)
+    system_user = models.CharField(max_length=48, db_index=True)
+    command_no = models.IntegerField()
+    command = models.TextField(max_length=767, blank=True)
+    output = models.TextField(blank=True)
+    timestamp = models.FloatField(db_index=True)
+
+    def __unicode__(self):
+        return '%s: %s' % (self.id, self.command)
+
+    class Meta:
+        ordering = ['command_no', 'command']
+
+
+class RecordLog(models.Model):
+    proxy_log_id = models.IntegerField(db_index=True)
+    output = models.TextField(verbose_name=_('Output'))
+    timestamp = models.FloatField(db_index=True)
+
+    def __unicode__(self):
+        return 'Record: %s' % self.proxy_log_id
+
+    class Meta:
+        ordering = ['timestamp']
--- a/apps/audits/serializers.py
+++ b/apps/audits/serializers.py
@@ -0,0 +1,28 @@
+# -*- coding: utf-8 -*-
+#
+from __future__ import absolute_import, unicode_literals
+from rest_framework import serializers
+
+from common.utils import timesince
+from . import models
+
+
+class ProxyLogSerializer(serializers.ModelSerializer):
+    time = serializers.SerializerMethodField()
+    command_length = serializers.SerializerMethodField()
+
+    class Meta:
+        model = models.ProxyLog
+        fields = '__all__'
+
+    @staticmethod
+    def get_time(obj):
+        if not obj.is_finished:
+            return ''
+        else:
+            return timesince(obj.date_start, since=obj.date_finished)
+
+    @staticmethod
+    def get_command_length(obj):
+        return 2
+
--- a/apps/audits/tasks.py
+++ b/apps/audits/tasks.py
@@ -0,0 +1,12 @@
+#!/usr/bin/env python
+# ~*~ coding: utf-8 ~*~
+# 
+
+from celery import shared_task
+from .utils import write_login_log
+
+
+@shared_task
+def write_login_log_async(*args, **kwargs):
+    write_login_log(*args, **kwargs)
+
--- a/apps/audits/templates/audits/command_log_list.html
+++ b/apps/audits/templates/audits/command_log_list.html
@@ -0,0 +1,109 @@
+{% extends '_base_list.html' %}
+{% load i18n %}
+{% load static %}
+{% load common_tags %}
+{% block content_left_head %}
+    <link href="{% static "css/plugins/footable/footable.core.css" %}" rel="stylesheet">
+    <link href="{% static 'css/plugins/datepicker/datepicker3.css' %}" rel="stylesheet">
+    <style>
+        #search_btn {
+            margin-bottom: 0;
+        }
+    </style>
+{% endblock %}
+
+{% block table_search %}
+    <form id="search_form" method="get" action="" class="pull-right form-inline">
+        <div class="form-group" id="date">
+            <div class="input-daterange input-group" id="datepicker">
+                <span class="input-group-addon"><i class="fa fa-calendar"></i></span>
+                <input type="text" class="input-sm form-control" style="width: 100px;" name="date_from" value="{{ date_from }}">
+                <span class="input-group-addon">to</span>
+                <input type="text" class="input-sm form-control" style="width: 100px;" name="date_to" value="{{ date_to }}">
+            </div>
+        </div>
+        <div class="input-group">
+            <select class="select2 form-control" name="username">
+                <option value="">{% trans 'User' %}</option>
+                {% for u in user_list %}
+                    <option value="{{ u.username }}" {% if username == u.username %} selected {% endif %}>{{ u.username }}</option>
+                {% endfor %}
+            </select>
+        </div>
+        <div class="input-group">
+            <select class="select2 form-control" name="ip">
+                <option value="">{% trans 'Asset' %}</option>
+                {% for a in asset_list %}
+                    <option value="{{ a.ip }}" {% if ip == a.ip %} selected {% endif %}>{{ a.ip }}</option>
+                {% endfor %}
+            </select>
+        </div>
+        <div class="input-group">
+            <select class="select2 form-control" name="system_user">
+                <option value="">{% trans 'System user' %}</option>
+                {% for s in system_user_list %}
+                    <option value="{{ s.username }}" {% if s.username == system_user %} selected {% endif %}>{{ s.username }}</option>
+                {% endfor %}
+            </select>
+        </div>
+        <div class="input-group">
+            <input type="text" class="form-control input-sm" name="command" placeholder="Command" value="{{ command }}">
+        </div>
+        <div class="input-group">
+            <div class="input-group-btn">
+                <button id='search_btn' type="submit" class="btn btn-sm btn-primary">
+                    搜索
+                </button>
+            </div>
+        </div>
+    </form>
+{% endblock %}
+{% block table_container %}
+    <table class="footable table table-stripped toggle-arrow-tiny" data-page="false">
+        <thead>
+        <tr>
+            <th data-toggle="true">ID</th>
+            <th>Command</th>
+            <th>Username</th>
+            <th>IP</th>
+            <th>System user</th>
+            <th>Proxy log</th>
+            <th>Datetime</th>
+            <th data-hide="all">Output</th>
+        </tr>
+        </thead>
+        <tbody>
+        {% for command in command_list %}
+            <tr>
+                <td>{{ command.id }}</td>
+                <td>{{ command.command }}</td>
+                <td>{{ command.user }}</td>
+                <td>{{ command.asset }}</td>
+                <td>{{ command.system_user }}</td>
+                <td><a href="{% url 'audits:proxy-log-detail' pk=command.proxy_log_id  %}">{{ command.proxy_log_id}}</a></td>
+                <td>{{ command.timestamp|ts_to_date }}</td>
+                <td><pre style="border: none; background: none">{{ command.output|to_html|safe }}</pre></td>
+            </tr>
+        {% endfor %}
+        </tbody>
+    </table>
+{% endblock %}
+
+{% block custom_foot_js %}
+    <script src="{% static "js/plugins/footable/footable.all.min.js" %}"></script>
+    <script src="{% static 'js/plugins/datepicker/bootstrap-datepicker.js' %}"></script>
+    <script>
+        $(document).ready(function () {
+            $('.footable').footable();
+            $('.select2').select2();
+            $('#date .input-daterange').datepicker({
+                dateFormat: 'mm/dd/yy',
+                keyboardNavigation: false,
+                forceParse: false,
+                autoclose: true
+            });
+        });
+    </script>
+{% endblock %}
+
+
--- a/apps/audits/templates/audits/login_log_list.html
+++ b/apps/audits/templates/audits/login_log_list.html
@@ -0,0 +1,101 @@
+{% extends '_base_list.html' %}
+{% load i18n %}
+{% load static %}
+{% load common_tags %}
+{% block content_left_head %}
+    <link href="{% static 'css/plugins/datepicker/datepicker3.css' %}" rel="stylesheet">
+    <style>
+        #search_btn {
+            margin-bottom: 0;
+        }
+    </style>
+{% endblock %}
+
+
+{% block table_search %}
+    <form id="search_form" method="get" action="" class="pull-right form-inline">
+        <div class="form-group" id="date">
+            <div class="input-daterange input-group" id="datepicker">
+                <span class="input-group-addon"><i class="fa fa-calendar"></i></span>
+                <input type="text" class="input-sm form-control" style="width: 100px;" name="date_from" value="{{ date_from }}">
+                <span class="input-group-addon">to</span>
+                <input type="text" class="input-sm form-control" style="width: 100px;" name="date_to" value="{{ date_to }}">
+            </div>
+        </div>
+        <div class="input-group">
+            <select class="select2 form-control" name="username">
+                <option value="">{% trans 'Select user' %}</option>
+                {% for user in user_list %}
+                    <option value="{{ user.username }}" {% if user.username == username %} selected {% endif %}>{{ user.username }}</option>
+                {% endfor %}
+            </select>
+        </div>
+        <div class="input-group">
+            <input type="text" class="form-control input-sm" name="keyword" placeholder="Search" value="{{ keyword }}">
+        </div>
+        <div class="input-group">
+            <div class="input-group-btn">
+                <button id='search_btn' type="submit" class="btn btn-sm btn-primary">
+                    搜索
+                </button>
+            </div>
+        </div>
+    </form>
+{% endblock %}
+
+{% block table_head %}
+    <th class="text-center">{% trans 'ID' %}</th>
+    <th class="text-center">{% trans 'Username' %}</th>
+    <th class="text-center">{% trans 'Name' %}</th>
+    <th class="text-center">{% trans 'Type' %}</th>
+    <th class="text-center">{% trans 'UA' %}</th>
+    <th class="text-center">{% trans 'IP' %}</th>
+    <th class="text-center">{% trans 'City' %}</th>
+    <th class="text-center">{% trans 'Date' %}</th>
+{% endblock %}
+
+{% block table_body %}
+    {% for login_log in login_log_list %}
+        <tr class="gradeX">
+            <td class="text-center">
+                {{ login_log.id }}
+{#                <a href="{% url 'audits:proxy-log-detail' pk=login_log.id %}">{{ login_log.id }}</a>#}
+            </td>
+            <td class="text-center">{{ login_log.username }}</td>
+            <td class="text-center">{{ login_log.name }}</td>
+            <td class="text-center">{{ login_log.get_login_type_display }}</td>
+            {% if login_log.login_type == 'W' %}
+                <td class="text-center">
+                    <span href="javascript:void(0);" data-toggle="tooltips" title="{{ login_log.user_agent  }}">{{ login_log.user_agent | truncatechars:20 }}</span>
+                </td>
+            {% else %}
+                <td class="text-center">{{ login_log.terminal }}</td>
+            {% endif %}
+            <td class="text-center">{{ login_log.login_ip }}</td>
+            <td class="text-center">{{ login_log.login_city }}</td>
+            <td class="text-center">{{ login_log.date_login }}</td>
+        </tr>
+    {% endfor %}
+{% endblock %}
+
+{% block custom_foot_js %}
+    <script src="{% static 'js/plugins/datepicker/bootstrap-datepicker.js' %}"></script>
+    <script>
+        $(document).ready(function() {
+            $('table').DataTable({
+                "searching": false,
+                "bInfo" : false,
+                "paging": false,
+                "order": []
+            });
+            $('#date .input-daterange').datepicker({
+                dateFormat: 'mm/dd/yy',
+                keyboardNavigation: false,
+                forceParse: false,
+                autoclose: true
+            });
+            $('.select2').select2();
+        })
+    </script>
+{% endblock %}
+
--- a/apps/audits/templates/audits/proxy_log_commands_list_modal.html
+++ b/apps/audits/templates/audits/proxy_log_commands_list_modal.html
@@ -0,0 +1,58 @@
+{% load static %}
+<!DOCTYPE html>
+<html>
+<head>
+    <meta charset="utf-8">
+    <meta name="viewport" content="width=device-width, initial-scale=1.0">
+    <meta name="renderer" content="webkit">
+    {% include '_head_css_js.html' %}
+    <link href="{% static 'css/bootstrap.min.css' %}" rel="stylesheet">
+    <link href="{% static "css/plugins/footable/footable.core.css" %}" rel="stylesheet">
+    <script src="{% static 'js/jquery-2.1.1.js' %}"></script>
+    <script src="{% static 'js/plugins/sweetalert/sweetalert.min.js' %}"></script>
+    <script src="{% static 'js/bootstrap.min.js' %}"></script>
+</head>
+<body>
+<div class="wrapper wrapper-content animated fadeInRight">
+<div class="tab-content">
+<div class="ibox-content">
+    <input type="text" class="form-control input-sm m-b-xs" id="filter"
+                                   placeholder="Search in table">
+    <table class="footable table table-stripped toggle-arrow-tiny" data-page-size="10" data-filter=#filter>
+        <thead>
+        <tr>
+            <th data-toggle="true">ID</th>
+            <th>Command</th>
+            <th data-hide="all">Output</th>
+            <th>Datetime</th>
+        </tr>
+        </thead>
+        <tbody class="table_body">
+        {% for command in object_list %}
+            <tr>
+                <td>{{ command.command_no }}</td>
+                <td>{{ command.command }}</td>
+                <td>{{ command.output_decode |safe }}</td>
+                <td>{{ command.datetime }}</td>
+            </tr>
+        {% endfor %}
+        </tbody>
+        <tfoot>
+            <tr>
+                <td colspan="5">
+                    <ul class="pagination pull-right"></ul>
+                </td>
+            </tr>
+        </tfoot>
+    </table>
+</div>
+</div>
+</div>
+</body>
+<script src="{% static "js/plugins/footable/footable.all.min.js" %}"></script>
+<script>
+    $(document).ready(function () {
+        $('.footable').footable();
+    });
+</script>
+</html>
--- a/Show More
+++ b/Show More