From 87c7452d19c2c1515448634d0eb56b8a957ffce0 Mon Sep 17 00:00:00 2001
From: ibuler <ibuler@qq.com>
Date: Mon, 21 Oct 2019 17:02:16 +0800
Subject: [PATCH 01/10] =?UTF-8?q?[Update]=20=E4=BF=AE=E6=94=B9email=20msg?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 apps/locale/zh/LC_MESSAGES/django.mo | Bin 80914 -> 80782 bytes
 apps/locale/zh/LC_MESSAGES/django.po | 177 ++++++++++-----------------
 apps/settings/api.py                 |  14 ++-
 apps/users/utils.py                  |  27 ++--
 4 files changed, 93 insertions(+), 125 deletions(-)

diff --git a/apps/locale/zh/LC_MESSAGES/django.mo b/apps/locale/zh/LC_MESSAGES/django.mo
index 62707d10805f7b734067ee4bc83b8bed3d839c0e..3c2a395cb88e66e85f4d74cc057378acebb9e6dd 100644
GIT binary patch
delta 18303
zcmb{3XLwgtw#V_45E23b3?YP0=%Iy#j#TMHq^VTt9qC;_4jlr5K%^HbDpf%PihxuR
zkS0Z`q9alj1RUBRaKFF*UiW#%nfvn2y!h<3&pCUqz4ksQ0cPer3YqyZWL8zbMX={J
zYUg>=JkMLz!Slvqd`Hi_fE)2>kmpVB<at@SuXPvC`;Pv8-8?S~*68ke;n*Cb@eK^c
zL6{NW!VEYCvtbJ6$93kB?w;@EqvJLmA(*L$=OtnkR>iuQfa9?QrlJP;35#J+PtVJX
zC9pUqVLT2sKR|N!PGMoJ*vlo{4lfb+=;eD}1dV#VU8b*M6mbU(#le^xM`Bi-k72k0
zGvQ{`3iqMLIc{D=jdKGv&QsKLA#b`k0#%_XpGIaH`7s6)Q3Ex^G}r=Tu??!!qfiM=
zLX~tSYAe3Pba(`F;rFO5xr-SvtdF}Mg$0OnqbljwprHXfp&lHA+KNS}jNiu>a5bs|
zTQMyj#q@Z}yo8a&H&6?Df}Jr#U$@eJScG^qYU@^Ef9Cg&(ilufwSF8V{1jis5U$Er
zsQwLD5uc+Hs5rotvKp#VbubPaU{M^1x^E$BrSD^F+=F#6*Fc>W_P-+yW&SRzge%N-
zsM4ik1nxo|)+4CB{T(x+H^>ezYQiYg{W(x)qzG!O%A>|>WY=3^M&|dr*@eMah}cJ!
z_5;)a8?hAbM4f@(Q4>5s-Jgc?y?}A3Ev$?>ORuBOKwr#>6EHI_Ge1FJ6YQj+Q+m`c
zoW{b$zoI5cKg4BT8kJZTRLSe1&PWn!Pn)C08I2)00hQ=fR3dY&e?3MLZyG}VwW7Ur
z=siAy%J4T#z$d8dC5O6!E1(jnhPtl-DuGt0`#Pewpf_r32AE?|TksAl!BytEq11mR
z9iP&n0bd*DO5PQthzFxqG6gl!JE+pWhuLrgYT|vU>qk)&e2?1ei>Q@e#~k=C)K+C3
z?s?g<uuns!td1I}mf6T`VRkfoqYmj1)Ie`zWt@qc_#i5g<ERClLEV21b^jgISqK{8
zz5{-48p^B&DuLD*k6o}d&OudRFRHW$P^CSJ+S?1L39qBJ=8nZrP#>B!Z*fkr2&xi&
zF&p|At@nQ(4IRP_uEX1oD*Xxb3T7vMj9O8ak#6DwsJJw0g*8x#G{7v_6g5#7RKg?e
z`c%|>v+xDI|L+GHoJPB04`$_tL#T-_p$2@2+SBx-Tmsop6BaZ}paw2$aV^w`Ckd5c
zA5_JLqQ)7IW%d5gq@lgri`t_@m<!LND)9g{aQe}%KL@Im<xvCH#~6GKwS|3<(t5)%
zC%%KK#A;L}cA~~Rf_`8RX=sJlQG56VRe{jA-9))i8J9v0T-o9#sDavI4(x4CM2)u$
z_1vfCS9bl7dHHSXua!KdLjz|X;}R&0Ds2L)B9%}TYKYqNrl^&4M6I|VYN8R=KM^(V
z98`iISe%MF%==Lb|8@-Z*WR45j-OEj-9k<L7z3r}K2;_Ms-%T1u7OG*2{qtrsPQ_X
z66lRu$Y@mJ6H#0G9%?~rd>UHGM%2V#p>8~cn)n=6!t1Ea^N)287Qr3FrBD;xL?v*~
ze2z*aVw{^W8uffJRKoG71^Ja|#L}pZd9f=d;RL*c$4~?98t(=;h|2sZD)G~(75#!*
zzyqw0!4uqJO+ww*9dqLltc9~(?0cta)THAsYN9d|-HNK9J~*{ehp{0R!}h4NG8HxO
zGSqz=P>Fqp+PW`MEBqE!q3==S|7c#tIKBUW&``;<PjaU=4!aRo!IHQF<M9}3OP-=$
zr-;dJ;)1A^7eh@@9<}$?Q4=@CP;7;Iz60vMewdc|z2P);<J%aDlTa&r2eqe*%+;s|
zH)AM%g?jF5R02n=|12uOpHTNdu<Osw3{yO>9Q`rq=cmz#h9>HVns^jy1<9z&EXFWg
zkGd}vwdcE0r9O=+^%d0fcTn&DGt_q>a;m$(1cngTK%Ip;Q>ni)??i`AWnWB(!%+i`
zMNKpl^@UrB8h9J3lt)nmUc}P)4^-lj$*v*=Q4^I$-PZ`iv6;nflc|3?Iy%y!mG#23
zI1IyaG#0_h7>pmAo3H?Js`&%HO#B#C(Yn+4)g60aL)?j4NV@56>vE$KE$GwGO3R~G
zR2#Lz=4LlkVk68+_$Bci<mZvs=pE0?g9lIxxq@22ZPbeYY4KxJg`Q&=mY(76_bbxS
z#5FM-o1ijljY{NA)WBoRDX7CU3w8f~)ZQP*40s+j-c{?rZ~fj(H%<hW;CeJtS>Jn!
zh6d<~%6Ks9P>sM1n2i0f!n^J_r4LaPt;Go3f|+nHYUL+T<DJ1!`~@@O4b)rl(5`2i
zrSAy)pM!>0SUS+b=N2;)H%2|s9yP&G)PNIFC7f>kDX2tNqV{+r>c{s!R0V%Rot1m2
zaiV9t`wL+Pz5j_cG+;GMgLSbmHbkwcKWaroQ7a#dI+X8Ne=2G#cA^$?(Bczz{Q@eH
ztEdDXqY_Rxhx%*aXd1c@i&{Zx)azCowc@sRy))``4@4!Jf?DZ()O((ak$4pKo6}FI
zgdSlr3`%heD1n-%VhZ)wN?xWT3l2i9d=e_5_4opALnU(9Jc+8rIaGzNptkHc)Z6d`
zl|YX7oMkX8@yn>69UW0;ZJ2%zYvNIKMBz--2V*7br{ONlhnLJ}sEP8<btQ~PmA(pU
zz`Cf4B%xN`9aZZ7c6~Ievg1(SlZ8GF4X^|&<433jent)O6jg!HdF~9vph{c-HBmX#
z#7$B6y^h+_?x@NPL{)A$>bWtf`(~kjk?~j1NTRU=l~LGycNo*72FilkqCBXT)In9O
z8ET8VVpbfCs?1c>eG9NQeu!o92I`RKS>U#=Fj8^fOQfNd)<qqv#;6;cqb6#Ds!(6l
zo)1SQHUahAOmjYJ;^nCK{bN)GwxcSr2ld=R)N`jWlivS}G)mL)8|uMa3*A{LW>&)(
z`kSFD(F?QVEL17in%htnIE=dg0;=SHqTc_si`;Koaj42Q#CW~`t!U`RDds}dK<iO^
zyxly5s?49}6Vyu5EOv=RpjMp6EQmVP#ZU=XLshZ`>bZ{S=cLh#Ml?=Dm3$G_z>l#g
z-oio{y~N%3BI>@TSO&XbJkCQM#{H;7zeP=S(!7AG@UN(?ytjn<>&9nvXvLvR-2>S$
z8*x6&jTKOtziQXpS==49rvp&Wk3uCh9aYhtsD!>l9n$ZyIo?DqsM<2>pN~f8W$uuS
zM;)SMa~`Ust56B7MIEM8R7tm?7H|r67A~MF`nz2Zd*3A%iy9{Z^?U_Xg4KK)8lZ`F
zw6q&~p$^FaRH<~I5}1x!>0H!=AENI29JM9;Q7b)*1@RW<!pP<B6I}}P64ys<x!;|J
zCK!zxXe!3xd{m~pu?-$TT`#c0nTT3ZO;lp_P!l)BMC^vTe?Dp}Kf;pu73RU4uHX04
zt#o^y4|O==P%Er}dX4I#9%zqBXf$f#2^J@#_IMVmB6Cp*eT2Gi6Y9J2IqLass4d=u
z;d=j%(a<3}i>kzBR4M;J?NRV5XI9j}MNnU~1T2PKt$!wJ0Shet$lPT8+fZ-AK`e|X
z6f?i~kcL+5ec(#=0xHvd7>h+Lu8&HnG3x$~s1*;u95@cOvc=ZF2KD}biQ0;zs01&f
z7JL(Zb=<cb(tPL!%z~;!LDYbyu{c&m4b%fQ@G#WYOv5I)2KC${R0Tsma?i)05-x-x
zSPu2}RQ`zi*P+pz4xQ5Zs69_bmHIF$!S7Mufy=13#arzXNoU5OPID2|L{+W75h~HP
zsM7bxFdTte*x1$7UmY{(&<%4jEiOZ4`T;7DwWyV)Vkqvi_#4zpPNKHrH&ki=Lfsd(
z#*Lc^6~~x)QTG-0X(;0a48xkJ6*sWB1*+ujF%J8p5}Sv*Z!xOWYt0>~572Q`C2yiu
z8obsmBr__}9H_J87pI}js-j9&8&%4dsJ-orTKRO;1M@Kn*IN8fR05&v_`!rZP!nWa
z?<UTRT4@Q?LMosZP!}^Wzn4TK9UUz&96MOt3zhjG>-SLuC!+>jWY<4LRpK+$*6l_u
z;2Tt87g6K?fvWT))cxr;Xgu~m8x2id6!kzNYNd5B7F(b)9*#wEwDo^r?niy$uA<Ju
zQ`BM2_OY9=tXbQ96?MG}me>0~mWC$$91Gw<)Ti_}RLQ(g+}>x#{DhTIiL}9XI39c9
z&sYnSHoAY|n1LGSB=WWOuHgtw-sFA;1b<5X3(}FF#x|^rdcgaPf6Iet9D;+e1YSd(
ziKtZfx+Y>n;#ZJu_vT{}thL#Fkb0pG;{=SyWf+G?%?F#QzgCiOi~F~o`dFFRxA;rc
zTX7e)1&>jC{|v`r_~(4Qa5_fexGyLv&c(ub7+=D>X4$RoUs8r*8TwakrT$v!4|L4N
zvR|?<xF3gLG0M^jmtjZrw!0N{!g_?$unnHTvRHD5`|G-nsDu_`cKjG)@Eg=wxr7<;
zzHg17uUtn)%*2Hps1?UyFqXnJn1Fh)9O|{LiK<Y2jKC(S!~6!mf!$H#?L*yn(ypIJ
zjpP4HBa+4))PTV|U5Ud{uUl5kg@rL1UqbC^OVq%FP|uG;C6Izya5?71RMg5(qE>zr
zGh)!Lz<9ownT7@|jJi-0HE?6pfbFn2_D1dfT+EEiQ7hPlN??ceA44U431jhJm=$yF
zc84+nm0%KP(EHzxhBEAh8h9LP;Mu5wm!kSNqWX8CN_p5kg;j|!ph};84}WWd1yB>u
zL~Z3N)bndl3*C&-%<t``p%tG+4SWq%kv~u?PQTYZ5RKi43t|aO#zfqLy6+llf_td(
zo}mt9#(nNEzJ$8(b=1~&L|-c$NJFP|0&1m8Py=nScq{6GgV+Gip;lVpYnNC_R6;Le
zLF|sYJ`Gjs_fQL3jhb&S>g_oFHTBoG`8plig1e|g6TaVl%i~aoE*@)O9n}33QHjpL
zw7Aq<g*wD*QI*_;s>D{*ga=U1UqGF$U-wggt@JJ(%J?aUVAwZq?;=nu$d4<q9Da&F
zpzfP`zzsCRT!f+YuSR{yKEZgrj`=a>p!;H0MvXJUr|}()@`w0!3PZo;4ZyeYCEST=
z&^yd8nh=62aW8C$Gf;=@464Mxqbe45#3hmkm1rT%9mEF>%MjN)>JszcqLG%4HJA@S
zK~>@ys#IrD1OEec2L3{oKI1W0(mXhUI1w}97L3KOQR7@ejsFKm;C<8~3_cz>3%-|;
zMkYG);VWbqFNsG}7QG$cqE?=Cf`Nm14e>4F?@sZPPyMI)Lj@kiT|7Vid)|3``3$cZ
z{q@ed#GjxhjyUhOGzLR7Lvb1zxKJ9k;wl)4bx@^jVfH~)Xgun^l~^3tV@do06EMvM
z*Iy3v5O=^L_%`Om4=@&Y>AF_<vl{pe$71e_{3ynys1jbrRJ?^5amA0WlpD<*s6%%M
zby&Z%{>#>X$Kr=($R+oDBnJNdFRyi!Kn+yMtbt0Po?UNhwnKd{dRsgJ_1r8}0`oC5
zuCwdg%mb*3p0@brCF-w3@z6R#esT{+qWbe&9B)>){>Elo)Wki_{^l_AZPWrLqQ;wP
zE=DD~<|p4Zw$ssrj$^0?D*WvJf}keG5qHCuI1@YKRjh&a|KXfs9x%gxaqoY9RD$DB
z<4(1B4i+U|=v!ltUATdHxo`*d7G%E6XBFF_`WK+SWM80Gbl5y=UNP^X?t5-V{p!w6
zQB*?ZO~0x&YNG~BGFzHm&4H*r9fMlQOjKnS*!4Z;G3&ozamW=nZX{{}c`dGnoFRVy
zr=h**Vh(c`ykv`4np;o_9yGs4CG-nw;Cp7|Rd-(kYNgdM4c0*=-T(_>bBxgYKb%G=
z9TNi`d_c?v*8d?Y!41~G3-c2nvG_JBfhQP>Ij=eMqY{oY%Ugdfv!P^uuc_V8((Gyu
z)D2u8gId8P9D>Pq{h68Jx=S!S>I+u_(_sbF>sG^j9hK0Vs7j1LUybp0;T_aU7oy(p
z4HoaW_$(@syQt^xo6pVg8?Haf%!67$QH$fT9C0P<?|Xy#htn~Hj=<rv3o}uf&P64(
z5_91ei%(!U@vo@8yp0tw>ZY48$!vzYuN7*%&eq@G;$b(bzcQRaM-iNc{qR$}A@(<y
zKq=G!HBpJaf+}r0b1*8=WK^O{Q1@@O{{0r8HLsxNz2{rUV>9%3cOlBmi5e(BYT|f{
ztD^>Z+4`HK66$Q%N1#?d33cDQ<~-|PiV^httL?&O)bHopEk216#OEx&idBejSzPRv
zTX6#F^w+kyGwQja7LPaQTK^i0w;&1n-a#75{3NP$*X@Ro+isv3vyhpHDs^>>o0;vc
z|4oa>SUlb0W#)R+;ocgM{XaoN1KzY7o|@_Za0$hjWl>wu#NrO95|6?#oP?QihV?JC
zcr~gbUs(Uwn1T41`t|;wr;!=2nGemdJ8th{Py^&OOPH0+x~K&-H@jK?2-Hd^S-i|#
zZ*E0jhhx8W96`nBFeCnqO6<1vKSL#w_O3IFna?bVrMO-hHBJw+A1)*wYH{X!?)hx@
z*nbUJkPbbNfSRzP#r5sR#%5d88R=<G#LC3WaS@(JjW_g9H{N(N8Pz`vHU3hIKmL>Y
z>&NRhI&=u{+l37ObS2G>3G|n+_zjEuqY_?jt~NixNcy*+enuR?EO-Nzz+b2@X!w2i
zd`6$f3v^^f9j3x|p)~4&3KrMKg2YMI-wy+a51Y_G3FGj4ERN4m&lh`O<De3*Z6=|f
z_nX-bZOxu`!%&MyTbztq*(}t9E3JP6YNAw&cUyb_b>C_8l3l-U{^9h!2Q+j_pW20N
z58Z%y%;H#->lIPo`VQ7V(VUIi(`6Qaf?DZzi}#|&KaSdp>(>7yAp4*0k-HF$dAK1C
z^*}w;Kpjve?T%XMY)p^K?D|^k--J4xU!lH;=dAw`D#5gm-FVTcvymIK=>4xwLjyO%
z?ARVvy5Xn<#+g&C|6SC83$1@GDxpoN=eJ`po;J^5Jn?xm{9pXwBCdpfT^jRf)WVC{
z9rHbL6`71mV4=m!F|gOD1a@2hcNSl^>wlWwU+%rnh<&+#HAZ9fQ#Wpjr@a4~pp11?
zHf!Qb^w&pCm~8#?EM98yI*UIwcUu2p^CXtz`EwR$dgeZC(Wr3?KBN9>Bv?l^R6<Fp
z!_o}3S6xxB-(=MN>rnT7fx2%ePRA420^2=z@A+ob)@(KRq28insONw7X=uP}=08yb
z2Jzn<m=$$B9@SsP;>M`GZi^adh{dDq`g_*D0(F+wptkHYb1!Nu{FBzWj+)>ZYT(Eq
zXK_@2ZB!yHPy=>BP23lA;t-49Mcp^gT!s2DZL;_r>iMgfj`_VicHyxZ8tf*FLJd^J
zENj*@UqO92+n8@!|7cXg$*9+M3F?!30CoRi^CAZR{qGhHmF6Mpr(Rf^pujJa(Wp!t
zp&o33g|UalGf*pAhD!7RM&W5xWv-il*!2e%rwMV_(_`TMk5q#P3YisA2_>0rPy_b1
z>jP1HHxac}i_BE>h<OE-*fZ4l8Pd8qFKWCJ=<Cy3hK5$!#_VeL!))}AK$Y-a)PO0d
z@5OS|C;77VrwerxMWYrFhf1)L*$e{<K`mflXpsB)KgBM*XD&u%yb@LVEf#-+NyO(+
zi4+QRCYsf;2>mZxJP0+8k4k8c#VhUlmavpX<<k2#xpbVa8u&swmt#}Z6fMoJs2UBl
zcob?aQ!y95i<)A+xgGWVVe_nc1@+uLiyx<>2I>e6cNa36S<PIiH55R7g36-?Zf$nA
z>w{4VOhzR%&-y<@-M=5T87D3N4Ru@}h5PQoi1cn(a-+U^Wl#^khI+7*#UoJ@O|f`B
zYQhi9-KYg!G%usZxoJK$Lo&GgB7GXVAv<cNg)OdR)<qqc=61cO^^Zaw->H}vH=z<g
zj!N(@YTTd*_u^(k9oKTG1Y4VaM;hAO9_B!ElsO4C(7UJvm!JmNh&rC1TmJ#nIOkFK
z|B8I$yt~%_FY6D<=n{@Z?(@9_8XB+~YJxi03R_~}<B0``&!Hyx3pGJ#CTA4t`B>ET
zq82A&;03g}8EX7isEWNAh<*OtOG5)LMU`$HYQSw4@3Hs<>b|oUU$OXi^RXG4*-aE>
z7BMTEjm!?H|1G^Yh=wwqZ*D?mcnFoyb@P##?ge*$c2uH?H~}l665L@Pvg<#fD)S?1
zylYqiA7bF|K;t7_##K;1HX5T6dJA><=Ab58gPLHYxx=m>GJitdci;TWOq0d+r$=o;
zBr2goS?v9fw;Rf%Ca7vQG+UTm%mJu@-Zp2MtL*ycsNa3|VKID!`c<Srl(UpsDT?=B
z7i!a?(lkb8)*kiquBXK_%?0L4)JivC9!$0P1P0ECdBwbkO8B|OS+cq~pKpyas0Zt!
z5^0W_ptJS&vi@NfPc~D`<)|(D*y3+c6P~jEt5}Elxm~Xl?dI{D(a^-5tfL=l;xVWJ
zCt*)qW^q_H*B^^|t}?1(^(=0RdcK{-UCn{0gvMAr+v$7DtYf{o6*b^~i;trQylC-d
zOiO&n`X882QCk@j;}Xk^s$_1|LQ0~>t!vktU?|@o?~Oo%-|A35>3dt;5B0!M%!I!6
z&ot+nOHh?qg?d{yVF-R>{fAL2KWqMmO6Zx?`yZ3t4Uk|~Lp_jWwnJ55fW^a66HY@7
zG~eP)cKs`CN&j~i$K`P2RYCq1!fR}C&7AiBze+<Z?T8w<H)_J+7LPHfn+wbj&CkqT
z<`MH8s&ZFRTX7#XZrWUKo`_sQp@IK7NRE{7Y6Sy-9n;$`4K&A~ey&YNJ^C@~r^05`
zPlX>%{R5wBQP8Z4xrtv#Eol&{ramgAITo+Lz<9a&6zS*Lk96e2+o+FlraUh9Qm7lN
zp(gHbaWd8;{tPSQW2}T_^SVvwgG%6QoQEf@zh^#|@NV;5K0Zad;T|1IBstc7r5B<8
zV(A2`63<b`EPsCY3u;BIO57L+<8;)oB+pSr&sD&!yacL3)h%v`y51Z0i|$CDMgtnN
zQGYT%kNOoOwxBy54NzOq9JQj>*dM#&e*6Jd@+F0W0)KDxC6*+<iTaH>rm(A28!S(}
z0$;~7SPlJBMO+2m#MkHuE*cd0zfrfu*2LSe4Q7pV73q(Sh?in3yopt?b}^@q+Vkz0
z6_26*0D9THk6KVz@xX$7FOzF{xy(4!4dqdvoT{iVL@n#Dhx+8aVsR_fgdI@t(;ys)
zqfvkB`4BZ;niB4MdNV6#(WfXc4c(Av7b*oVFd^zNzK+_nA?8HXR=kIrc!kBA?fM?n
zmYlHbw^8E+m2}U=qRvt&%%x9JZM)FH>|?%#I`xw+UTc1C?lZqLe?%p86LsjGT7R}u
z_L`!uS4AzL3HmyPZ&=4*b1Z7bGb~<eu0xgh3v&<FBtDF)U_^XS;Qv7%g_@`bs(++8
z4mI&qyFNFb_g@pOp(7n`MNO~=wfBcnujL6GgTJ8O^G>Cmi%<ieGJi&mcMD&{r>I0K
zCAe{4MqPj1?3Td$ue}&*9n<Z`#TI{PZb5x$_M;|zZbl@!w;~7XJ5e8Xy%%btVW{yZ
zTfD^FfLiDdpN2C02K775In)3Ttv{qpP~iX75Q8dZThxP{QEx>b)cpgj|83NLQ>=fc
zx!C&Gm>W(1b8CEMevQifFe<SN_!izq9oC*@-Ne^XiTsXA-~nplH09ifC_NS?u7V}7
z6Y4uM183uPJfJ^{j4U4%_{+gs72KC_IqK7T1GT~;72SuaIO-GYqdv`xQ3)Qh{)-kr
zLM4=;l1nH%@>`0R4{Ok0p|Trq7^cyZ4%1L($5AUP{-U!SYJ%!!Gt|IcQ57193ve9j
zxtvwppO*`v;s&S%G)GmY1?u^Bs6Pky#>_h9W2&UytTQ=na9S^QP}0co;E`!kZ@-!?
zZ7{##hPLh;6nr>1wRfA}gJ131YgqO4vH$j;sspOG?mu);Y^N?=`VZ|lB(`U#!LgmY
zb?X<~Wl*<HL%Ma19Xzy4mu`axcOTlP&s$YX5BQI#8878#ySRkEjj7?Qb{<sv@As;=
zX{W)1hxZ@U^~IE=_BA5^>!Fn7_64J2|EoJL<wWOUHH-bNziR3KUdn&<1QHogy;P}E
zWS&yFeV&x1=Q5^@?Gl-?yF;cdf4e;}Ug}RBZuL)BCNVa#;)@9hsi%(@4Q>(`<8Qax
zs8`3YxwdHH_01n$o%+R<FFw06b@7$$+pbQXb!FQ7|7V?CHBzRXEExZ{l>~<SKdW_R
x<K%10#|3JYlKoV^;Mlm7pfhDt7M-g7|5c2<MKt^W{^vhx`fp)slhgZp{0}N1YX<-T

delta 18427
zcmcKBXJA)Fy2tU8KtciuffS?@LT^bZQbQ5xh$u}(g7g}S5RmGj2}s8*0s^84f=U%o
zKoBWX6_Dl%NRg!@AYCln@9#g)u6OU<`||Fa&pdPH%slhVIVUl?(;j4g>tW^@DgJ_B
z&wD1-^Co$ocl8y|8-;^9c-~38kKYD)-r<g(7t6T!I(yzB`qy{$yl5QX&GW)>F2>;p
z7>XM)62HQ1cmQ+Z2`r4im@(Zw-z!ANlifWpGq%R^*cMZ83MS)TEQ60w6BO^^d8M!s
z7Q_Kq8fRi6ZZ@wWIeU3~dR{Sn9hLB6JdG=R`kog-V`?v#={p!h{2_+oCd`l9Fcwc^
z7QBPm@i){Cv-WoL<T8t(=1E4)QxA1tQ;S=oD%94e5k;d1K7m6}3C+MvxB%nveN^V#
zQ3-v6D(Mx}QFv*d7X~qy5A&mrq$*~^XYG1hOd#%zs-!=jh9+Ewy76n&QJh0%d=Yct
z4O9glV+h9fVb_?~EQUFWlTjP0i=D6qM&f!bjytdvUd4W_@5T1@yn%F#!xs1uTVhkL
z%7v)@J6Hu9^mhrojw<aqRHY_kNt}))a04pQv#6b3#FsGaRgMEYVIu2$OKB+c<ERo|
zHh)2t?h!^{=m0P9u*RUywjye04KeWWq84n68s7o+jPyYr)d<vl8FqakMzX%Q+%9aw
zqQtvUrM-rl;69ea5Xz)ypdxC4nyB$jFbDQS9pNa{vos&|46MVvxDTW7f_V>pEfA9K
zN*Rk9kPr2`ltC@<JSy|SsKmygN<J0!jLbxx>0H#2>_AmyA1cv<s6<X#|82}k{2-nB
zYe(UO+<P2@N}vKJV_nqsfvAZ`q7oQ~8aEx4z(UlxrKlrVgF2ee&96~Ma0E5aRr8lY
z)PE5j59!c^^9H+;e}XZ@n@~GBfLiDXs<bCD7v4cFob@$#Jr=b<epJPZpmv&sdGIOJ
zQN4`0G0mr;Qoezj=uI=jTwpFW*PtHKFHjTh#A<j9wQ$rBmq;$uh6<v_C!)qzK|KqN
zP~QQ+GYw@n9+kj*n1~-^68?ayK=@Es+U%&(#-h$P0ackK)X`M2xGrjeCfES`penHr
zRk>Xlr}zIy8hQxtxDGFPm@9p5vn=N3dL7h`UP3M0)8fIX9gasOG99CFHfo`dQ3-Fe
z>jzQmeUCZx{$C6<cp7a$*l_oy%Yj<B7;3^=s55;Yl|U+L!CvM7)WpLqeiQZKnTbkp
zE$Y6_sCo8cMZN#WXz1+1N4PV}f%%9FqaMPVsEMDq{tl>8jzCQ~4WGbys3Tm9l-ApV
zdGQFU5;stl2pQ?-i$Px#B+$?flTc?^7h|y*YN1Z3jMGsQkFxk}RAP%T53VuyqvpGS
zy6>Tx`E@rghgte{>aPXr(V>akpb|(!mG(8%Q|qHDGz0Yv%tq~GDQd^-Q44Lg{{5(V
ze?TR8&EiL>hdF|>YvVb68akVT)=>gAQ6<#EbudtRRAL=aCGBnTcvJ#2Q4`KX&9@Ad
zz#7y>cAyg9k2=zms14mz0@}%a)WVrZxq&%Q3&&$sOhRSe19f8`+>Gg{1<H?h2~;y1
zpb}|`TCg4J{{E<h2cb6P`!wQdOu~Zr2{yrfcnjmkxQRl?x(T9C3B;lj&xcx|6lw!C
zu^~1_J;XCn<5pmP`~vIZ-(Bo``NmOZI;x^F9*Wx07}U3X66#@`fu(Q>>RCC6n)m{0
z+#OV6zoL%Ld&BK8Cu+X@sQHVU<*=mQ|H?FUHm{(b+J4v-$6#5!jENXG-W^Fj)a%p|
zL$DWW=lxL&j6j|J8>oe6V<;{}9qEUtaqBUJ^}R1?Xy8r^#cxnMJA!(s&Y3q*H~xm9
zn0bP`FB>X>7*u~DRD#7(<7?XW24)MaM1Onq3)9G;p@r6?7T%89!68&-e!?tx8#V3`
z>ddoDbfwORdYH<h?yrKXWPQ|k;YHN=0hk%bqn?Gy6RE#4Uq*+X%5@lqU!o@3jk@s|
z>I-)THF40Ju9UH;35#G7mP94~B5K}VsD%cj#${kQ&arsWo76vyj-_;HXRA?Xx&^~=
z2NuU~F&OWf4={oFky&68zpxV5K~;1Lw!xLy7(*tzjWkCcQD;=5y?h$l=?K)rF$uN9
zx#n_IVq48`a3k>#$j>V;V~Xb$!0c1qM#`c#@FZ%-H7u@!s!#*eQ4U6J+<%>h7M_6N
z_%<rD_fUy^iW>N}c>wkBe2*F*G0mNQF3d(;7&Tux>rb)%hNyX3Vi|0QRMz(<(#T53
zDpbasQ19<nT#kpZFOHn<ep9-RTId$4GQVSX44>h4o*Ok^K~$+rVI(G_-ilgwy*0+^
z{qI0SnGFtfkP=1_&qCd>1hv3s)P(y{B|L2XCs2u8K|QSZQD45SGhGFXqn?#&sCn9<
z#`nf-djE&e(1hbK6HdWmI0JQ-pP_cN8MX7>Na?&I*8d1~6d`Z9jYOg1+^G8!FdECD
z5~zbppgH;)(9SM&N9|xR>UEoh+VLX0{t@cw-hfK<1Zt<JQSbR9%!#oX?l-66sLIyH
zQrHN!fdLqUuV+wy?c^;wqH!Z?=ii_*y^T3A=x;8OXfqFLqIgt=%A$^}0_tt3i~7~A
zgE<sqiQhu~>{yC=*0%hO`fK6sbj08>)Cc1V>Zf7oEcefR#mxGsg}S0jI0#khF{lZr
zVBn`7YUe9Z<36+NJ5ZI~gZiGF^=W8=^H>dkMkP?<Z8t$ZR0W!$j;cMX#63|94M#0J
z8#Qh|YTOD`Wj3IW@JrNvU!%r-kNQQ%zf7YEjZCv$M$e)i#^+HJy@WcVE~uSMMpbMM
z>WDtUSlooF%t6$+Gx#)K$BLLd$IaUXb#!S+#eHuG4V7vN>Y<v2N?<N(q4!Z0T8Fyv
zOH^X}Q1=}(PooyTgnHlaqACzP*Hs`4bzc<fzPy-S?|%^*Npw^|-Pj5BEc7?W;S<Dj
zP?cDXx$%2cDQ}rU@3;y?qsAwoN?slH{y&59*bh~?8JMW|e<2MGJYb$hmGU;~jDzPn
z3!*Ah-K>k+NfT5eEm1q}V)nwoMo<ZlLsfDC>b|Au=cTclMjY-(mHZsm#=BSoE6sO*
z2WW>HHySl=HderoF%f@6J&X|xT%tKq3*|8rP!%qNI?8GbsK0hppAPM~nGH<ET*Tcl
zKaNCY{*GN=Z1D=znSPGCe>*Cn!>Edeyz3Hr0`-vQ#}-%~i{iL<sed6FAJL)LWH0I=
zI%NKcD(O{J0=H1(9-&Gaw9xG|FX{*qP!+9+y8bLGvF@mOUPIkK5|!XMpN1;%wspK~
z16HFRlFw14+J#EsFlxe6s0FX1#{Gdhl8E=*P77fX;!2ngU&K6^js<ZV>L~pcG_=4D
z)I<ldB%VfPn&o}|qJ`N}*L#{nP&=A{N^B~s#IvzHE=P?&jXKJou`Fg@<UY~mk$&H6
zPD2k#H`K$?54FRQsMlyJ7QiK_gm$17-e>V4)I;|@sv@UQ3H^*3_W<=>`2%%-&<E~_
z!!TU$e;f@xM1@e5D2*y*Wz-opHeW_f+z0hVdkstBC)R%qwShAh|7<?6{-DKfqfuCl
zak&+<zE_KecH9tEvKLU9cEfn=WAQXpLbFigm!fw3IqGcppdQ|ztp6tJ{r8r*d1Fxt
z7C~*eJo@TLu>nm`6TXD1L@(5YgRwM@MJ2crHSreI(R_!^@h0lN+8??KHbvdv9+hx!
z%#6cPZ^x()see5hbLr4idKz`+k5HwKUg|Q=kNOUjM!hW!QHeA++oPW5KB$GpT7L#A
z(M70d>@&=QTTzMaUP}Gdag+`XIE5j20hQ@BR3f)fJ9~to7`n{Gk*J;IK~=5-s<cm|
z#yyK+*xKUuW>?g>G@phtehstW1k{mCw|D_+r%SLTu0tjEBWm1FsE75Indu|<0m_A{
zWO>w18)G=OK_%J&^(^_X(om*jQKg!MD&@PVvt5VU`C-%zr?Cm%vbe^_E`ervhyD(z
z1zLUL7Ve5!i3gxIG7`0cDVR;~|4bTTbS%Jd{LtdnsLVH7|1Q+Thfouqv+LJUmG~8P
zbXk_W4Md_UQv@}CWmKhWqsBMKz~BE;X=vfTs2hf$b~+j3aRDmhFR=vfu>Nai#0vL?
zD~Ea(>Y*OiRMdjQ%t_`ucKu^~Qt$t68d~rVOu(p>?o(O;RkDUy65C*5^ihetkEys9
zdt!-I?oTT-u^#bJ)F(O5YQ|zB4#7jHp8<{6Fjo;8J!ovgDX1G7e#$=+U^`65jaUW~
z*Scq-E$Ve0f{pQS$gz8;u{gfD&V7(pqkbCh!$iD*+DPnrXU+ATzjo4%jw(0}tKlw-
zz0cfRQ5AIrbx>ztA4lVJcn=R_4DR`ylHw^WhS3}NlRH*5hhaJ5%~%1iZlM0!X@QOW
zr3!~(XN;g6>DV7T;sxx04Zm=iFT)1J-(g$Kz1jUt7>HGgm!c9ni@EVG>UE6V;+~aa
zn2k8aw?-qg6=vr`2h@)HVKAm+CVUNb<8ah#I|23Gn1&JfHtJ#i0NddT)O=aLbmQ`%
zt`|nl<Cme4lSUQPgpE-peh&4zy^K2RG>pTEm>1tgO}r6x{~lBVComc>VL^O^+IgO>
zZs+AOlDH8vpYOGyp$XIM!UWXBvrrQ*#?rV3mDnlNYjp{=g9oStGJWOx<4_3~!+3lO
zW3dzJr{rs>1ZQG4*7p|EP=>2f6YoJy{CCvE|3LNMNA-tpbES+n^I{7938>P(g1xaP
zYT;w3qr8f`|0b#ezhNBfd*R#NjtimAG7(jg%BUSbkGi29cEw&;1`lC*{2eteafe%=
z8mfZzu_CrYJ&Y4k<L0A|b}9PW;RYIdO8235dLEVO9g82MZiw2+xnVqNr#(@L4MZh0
z8jIixyZ#-j)F)9Jx`A3R{A-s`zOSjjzRgK==m@H!9-8Mc1pA>Lx<ObQC!@yiM<sd`
zL+~HwRn$X#3suPns7gFWRUrE=cYgxv*($S(`fI0E>CleqVP<?5b#^ULJLrM$<8WMq
z1$Mh}2T>CpHP2xv@eS06>>eg!(jNEeZjX(LN1^7~=hHYuW5iy5&BA8;_{!l<d<sMM
zyZ62!b|G$xD)DO6L`PAH7W~GQxFV`z&!Q6Pg4$4T%pb%D4J!~&{njPse?=pNj+<Br
z@1ZIYcfggZ5bEqoqMm`LQKfH%DrpxSi$gFw{*LjO?Vy{dENcGB7=bCMhp;j7Ecjk4
z8oIF?HY3A9l6VJY(c6*pJGb+hm>SG$h(qabb(BB5-~r?#=RJRn-|M(P>Np=AJor7o
zywJbz2bZ{i!Yw=lb)@q!vsPG1BO4uSF$}jNnR$Cqr95HYLRBdAq#IWpOA{wyS!|2R
zIKlciU;*OuSR8{+StT)^_-QPl9d=Oz$KWV@59?#$A6*H%<67cZF%pZNcBQOn)<K<h
zGt|ynS$}uyPq%ouInkVjfq(zE$U0V`CfaQ7Ks^il?D|pj9O`><!{RJw+<mdA1oB}N
zCZf)~me~|l(HAZ5dxrXJz;NrBh`Mo>#Y-&y)ZA|Uhs`sngs+=-%tvO>S+{{O)H=~-
zAylGe&-$)Wn~v^uv_S266BfmtSQ4+`3mARQ{T|Q@YZLD`v;E}arsibS`@bKRV90ql
zZv-mNg(a|nZ;kqPp$``1LOSX#$iV7&&ieEJ!@YJjP&;aFwljO0gHf;NSaUY&+4%&O
zz(&*m${M>-6CN;6nwQOcsG|wK;C2#?s!V>=ef7;2*8hsd6U|wujV-cx8}bbK-T@jq
zi%aGscfpIi==zJB)ldsPW4?q+s2ghH!R9Qxz79j_--elR59(;Y!J>E^BUs=2jYcRP
zVVB$jQD%Nre<@Ug$=3fg7AAhq;sK}xeAM`N%_Vkyxw+B$cbVTx*7uIufRpBB^PUE9
zJ@~TQK{%!pN1`e*#+;5ya6anOx(dT^6Y6!_Vg7)+?<T4ezoV~4=oNP%2Wp}MsP{YB
z;>H%YLzQw6hT~9ktU1-3ZN87%z$X@eij{~rTmLUtsDC&e59tUzTvy!<(Wp%Gpb{#M
z`LLSBtx@;&K%M0Ptc<f!3m!0!p~js;&3DoI?^yikD)rY5S+2Qnbaw1Z{3Pmz#i#_<
zSiBRJ=y#~no--ey#zkItiN>SuPeJuJwz!?y6SeMO-#SK`lkCE5^Ihv-f?D`fi?`eL
zgVui>mC!}I{yS>t;Xk{DV$8g#{=yi6ei^$^6?4&1+u}AhAl2etScB`YTD$_avvsJa
zf49XKQ4{}aap(;<E)S}|ti{!kM11cV8p^y4>WtHDz(mvy^UP)Ddb_^e;$!Ad)_>FD
z;G1sYDAYU&W)kY*P6^2Qx2B<;^tAz_&1tBF=9!;k6!8&@&!bBD7_(sbEq6U921;yk
z8B_u_tiKUvBW|I7z5nfLXyV@HaC0*1A(@AoV3E1X+-&YeZQ!_h#rl6o?KJ!stALqg
zrl79{8e7M6s5liPu?s4(0oFeTmB^ds+vW%6YAna~EvR{}nYVE+@vjzV+;;Q4bDQ(m
zgiGnr4eL+~eqr%`8+h0}gF2GyX4oC~W40*1Lw|eJe7~aR3%%=%MD@p_<}Yk<`McC#
zKVECmp@(p&U6_v1#Pcy3S6O`4;yb7Xir#aUF)LtB`m3RSMl?mu(+8EnDAX5pD(e23
zK8+kS=Aa&$kL<!))D4>~-i<|w4_N<g3_N_;oc{3p?#J;<SekeY>i!kxCe(tv%>$_W
z{bM%ZjCtJ#{A#iHz}*;$+F2~>#^TnWj9RFQ#q}(1iW>K#*~zY_nFF1^H;jg!($RL|
z9n^&Hn=7#d@fWCX{dwyTd+5f+q0ThH;tHsp*0#6-<|b~5I*K&w_XBeNQ|!WAEWm)}
zm>c(@COVHQ=~Yx>alg7Bvk9o{<xu^VP!H!*s4rrw^^ZU$_$F%nT-3Ai9!Bf^-%djl
z978Sq6RLE-p>7Cy<cvV|$Dk%GVEyGVD{&>%{k1U|Uo>CFMB?`5R7@q_jDCF@d4F?%
zIP8Gkh(AD;D(mlV;R2|*C@Rq^s08X+e=Cc-+x6GXaX6Q8GqDer`NO?sb5R>x^#||2
z8lPFm7IP;)MgM-(f{}l^8}g#!!WJi5{G?ge`kR|=uoB}_Eq)92VVjGZXX&5RUyXIv
zvCRe^K<)S#>Z~rKUcao5-S|XQ;x$m?>f&T<jcxE8>OHUO1qF^K#cYUri&~)W@8Z)?
z0=>;4s0rV|JUGYtKehg?79U2P^%>Me4=sLd*K-HC{$i+SrY!2nDw_>3j@WNwjWpE4
zV^9;%GFMvvZd9TtP!nE4E&L1S#fKKh1iNv0%@SCW>y<1{Mcv;E!&u)-w+kc9NvK3-
zTl}&4xw+H)4)x_cZQitgFO$1J67|}~qmH5}YJ79E0|x&6->WoKn&GI2V=`98xq$)v
zc?Nak2`q-!EY6wP?JNORnWh+nFQO`wW)8IL!z`X)PQ$?aKT8d6SZ02KO6Y)j8a3e!
zyM7OKc3~mzs0x}@%;(IWsKmyg=AUlyBGi1V(ATH+Ga5RR)8=LKHs+%LcT@>uLfwQ<
zU|r&(s84ct>z{&JXfA34%TdqLX7d;ZHiFu~z0e@{^FLb_cOkb~2sKf0ROzc(+yt8t
zr=oVY%v^77$Kv!KwD>-1o=jmbp<Ec47j=KNFyA#A&{2numRKAAhRXD)4LoUHMpf#b
z#g9?rBEo|L-~JfX&XdgAsD+xF?aZF2`v&{gG159FnKR8f=0a5FAEG`)8&MPgXkNAJ
z4^RnY&FT`$i@L8eYJ6kVk+iYc??*#V?FiJ3Gf-#q9_q{Y8S2Krqi(!l@t>&i*|NFo
z`A|RoN}BahJM3U~N6pjM9PZ@5|FZ$J?81Ch#vfU{+1!gt?6_UOZvBr@4{=09P~gXI
zB~;=qQ3(!0E&K-R^?eKV&~Cs`zCYfNfd+p>MxE_7^Pc(G43BgZ#h?<5NA0j8>LIOe
z{Y_Exv_~!61NqW<gRK8`>z{}PS>Kyw9qUjNZbL1w2VcaK82E%{4+{MI!Bo@&qfiS>
zGH0XiUu@Suv3NZOUPFtIq2@n@enA>Hts{Gso3Jpdbcv`5Ygt_1;?}5z+gaSx;{N7H
za}sKy+2+UQ7V}UP@4p6|r$c9QAC+mo9L`Fp1e>7}N;5~8Q&8jQqY_<@V{tPo!8$pe
z%~03dqAJ%BHDB+Xy#M;v54VAzq7vGQ`r&aHwZI>!hc8#Oo2V>mfr@4w)b(a&XVij2
z%~9qAa~f)$Sw0PAw9GDiYHma=@Rj+kdBVJ8-bGCm6yuCFOQ7zrj`|I#A(p}ssNWSo
zH2pQ!*lg}bmF6%iv7b<{&2@{TV_koKvp8y}$yflZSlk+wKs&RiIT)4jSQq==+t%@c
z`I)=m?L{SW9JRnj>;KvMA6c9=&MowWSrm0-<t=W4TJQzy?}hb<#|EzR{_UZmg^mR}
z_`+Fy8?|t7E;nH~_8?BMc(S<|wbL!AitV%bDC+)m7GE~+p%Myyg8TIT$Ekq{W|EnL
zny|6OEm0G8u(&&h5T{%JFmp8Oj3=Vz%|LDNJyc~@qvqX<fxrJBp`nS-nwL;N?{8Rq
z8+F64m>o0acH^VXJZ3y<!4jyqp%P}sCf45^wexmnzudh4%4iH7a-I!bXKu5B2h4M*
zMDJSs8*0JqdEEW^P;n*HLQmlf*vjJN=2qly5#HfE4c)+<dEJfQqjvfai*KM7{LSLv
zd~RHnncpmx@qEo9f&VXMFM3q$p{P6Gv=K8fKk)*KH<`Q5qvko(eK#z=X9n|c@AP9W
z3U$3a>W4yAOu&x$sihj@=uj<}nqQ$7{sC2+`>5JvD&P(?7b-4>feBGR&N^Zt9Dw=;
zzlGY^8q~OLsP(Q|99fWWX#+Yc7YqvgyN{7rmH2biA>2YG(5O(5_cpdh^<PINTrb|4
zin=}+l}Kb^_l+)y`s-3_R3*lup0XvV-%`KuX{69Ni~}($!Tm}y7M1xz)J|8S7Tj*}
zNxOanHPN5g2;+(b1^zu;d(>|ji%}29H>e{xj@r<V*bn`yG`^<Mwx}z4e6gUwUyo{H
zS^E28U7Uxi)M<PYixm&@TI0)D6W5?Ba1&eM_!2>Z|1b4Pe2KVL$)Lc0butH4kvsT|
z{#mMUDfb&gU#!7}-DalJZs)Zzmi`u~e+=zz4n^%~GHOR}nG4P3c6}r2i}Mxg1F_5c
z_hDB3F7=&toI;iQJgQ{(aTt1Kf&zd09FAIW0_yrSa}MghMRt9?^>4QRU8slg2h@>1
zG{ef0xW1*iX#}2Tbr4rY4XlrP3tHRt0jP=IK#g0BdYIOrevRF2{pZbF<{zl1K5IF5
zUpccn2EL^Yt)rFM5tUG1)I&Gg`rom5sa^ld`j4O<!m}1XFf%8*jpRfnT-Z!RRj@`P
z@4p)L>8OLvQ6-*%Epav~k!#lfrx}vuCX7H`&x5L1Sq#Gz49tr<`{t<EvNgVr-B7Rj
zg(Tj8H3}xX312X~peB43tK(?YLYq+&AGGT~m{(9o@vFsA<=wbKsCi16)vy|IV^l@P
z`qr3%dMy^9J{0?{|7X+$k5CI_t>EH#GZ~do9aMr%P`}coq81o#{S)zN;(4eFpF!Q{
zU!<Ye;uh+LyLKU{q8peE)gNsZvi`DWMYFp3l-UTCcym-@ui#J|fO_b!BkTHJS|yiB
zf7C+5Fz}jTGVwGlhFh@=Uck1P^U0vVfBu$+yNUnARNPhBeF=+JabMOxs11IM`Y^3T
zy)Buls^X+lh=ww3hPu$f;t{BXrlS&?kNg_seSo!zH&t^JK0+<fyt+%QC91S5%?+se
zx0}aM^IpcNW;E{6n1dlT+>P&I5#nVQe}h`!I4Y47s0q%Y{xSFls?@<LYp>QD9}>Jj
zc<q2D!@`3@ytOx4<_ZZOmT7J1OPzv(`7bhhwY?tfr}gaHJAOddw3-P6(}$*Y9oVC5
z*Yt$=9s{~|tC^6L)TiT+&RzN@cIwwJePH^4j{OyM?$;;jUmZym6DuSpCv_e;@UOna
zK0O&Va9~2Mtnv20l>YI7>1!sWcO8;mu4msaUHhh2uh6wmT#f%WN`q4d_V3s?<D=A)
zB@+L2cc4E>7yg>@udy{>DUcD_zGBAn?Tb|XPq%2~zxV&|nKH(A8eUuj|M|ZZx7>fY
zF{9=yjdT9{3@J(d*Uow6=YC=3tHhVDTs^tk+NlRi1p6uf|F!);>q=R3{A<&Jn%2si
zk?C-e!hcoOw)nqB^*{1Npq|Z-=SxmW>iAd5|5+1i^gnO<XW24_9<P#d>G0Eq{~GW=
u3;EAv`X4D;j{jYn`^AMVv#z|q{>p+y|7o?rL=>3xYqiU@_S}&b-Tw<qmYwwg

diff --git a/apps/locale/zh/LC_MESSAGES/django.po b/apps/locale/zh/LC_MESSAGES/django.po
index f282f0c22..d9e60b04a 100644
--- a/apps/locale/zh/LC_MESSAGES/django.po
+++ b/apps/locale/zh/LC_MESSAGES/django.po
@@ -8,7 +8,7 @@ msgid ""
 msgstr ""
 "Project-Id-Version: Jumpserver 0.3.3\n"
 "Report-Msgid-Bugs-To: \n"
-"POT-Creation-Date: 2019-10-17 16:09+0800\n"
+"POT-Creation-Date: 2019-10-21 17:00+0800\n"
 "PO-Revision-Date: YEAR-MO-DA HO:MI+ZONE\n"
 "Last-Translator: ibuler <ibuler@qq.com>\n"
 "Language-Team: Jumpserver team<ibuler@qq.com>\n"
@@ -95,7 +95,7 @@ msgstr "运行参数"
 #: terminal/templates/terminal/command_list.html:66
 #: terminal/templates/terminal/session_list.html:28
 #: terminal/templates/terminal/session_list.html:72
-#: xpack/plugins/change_auth_plan/forms.py:64
+#: xpack/plugins/change_auth_plan/forms.py:73
 #: xpack/plugins/change_auth_plan/models.py:412
 #: xpack/plugins/change_auth_plan/templates/change_auth_plan/plan_create_update.html:46
 #: xpack/plugins/change_auth_plan/templates/change_auth_plan/plan_execution_list.html:54
@@ -112,7 +112,7 @@ msgstr "资产"
 #: applications/templates/applications/remote_app_detail.html:53
 #: applications/templates/applications/remote_app_list.html:20
 #: applications/templates/applications/user_remote_app_list.html:16
-#: assets/forms/asset.py:21 assets/forms/domain.py:73 assets/forms/user.py:75
+#: assets/forms/asset.py:21 assets/forms/domain.py:77 assets/forms/user.py:75
 #: assets/forms/user.py:95 assets/models/base.py:28 assets/models/cluster.py:18
 #: assets/models/cmd_filter.py:21 assets/models/domain.py:20
 #: assets/models/group.py:20 assets/models/label.py:18
@@ -151,7 +151,7 @@ msgstr "资产"
 #: users/templates/users/user_list.html:35
 #: users/templates/users/user_profile.html:51
 #: users/templates/users/user_pubkey_update.html:57
-#: xpack/plugins/change_auth_plan/forms.py:47
+#: xpack/plugins/change_auth_plan/forms.py:56
 #: xpack/plugins/change_auth_plan/models.py:63
 #: xpack/plugins/change_auth_plan/templates/change_auth_plan/plan_detail.html:61
 #: xpack/plugins/change_auth_plan/templates/change_auth_plan/plan_list.html:12
@@ -322,6 +322,7 @@ msgstr "远程应用"
 #: xpack/plugins/cloud/templates/cloud/sync_instance_task_create_update.html:53
 #: xpack/plugins/gathered_user/templates/gathered_user/task_create_update.html:44
 #: xpack/plugins/interface/templates/interface/interface.html:72
+#: xpack/plugins/orgs/templates/orgs/org_create_update.html:33
 #: xpack/plugins/vault/templates/vault/vault_create.html:45
 msgid "Reset"
 msgstr "重置"
@@ -639,7 +640,7 @@ msgstr "网域"
 #: perms/templates/perms/asset_permission_list.html:53
 #: perms/templates/perms/asset_permission_list.html:74
 #: perms/templates/perms/asset_permission_list.html:124
-#: xpack/plugins/change_auth_plan/forms.py:65
+#: xpack/plugins/change_auth_plan/forms.py:74
 #: xpack/plugins/change_auth_plan/templates/change_auth_plan/plan_execution_list.html:55
 #: xpack/plugins/change_auth_plan/templates/change_auth_plan/plan_list.html:15
 #: xpack/plugins/cloud/models.py:157
@@ -668,7 +669,7 @@ msgstr "如果有多个的互相隔离的网络，设置资产属于的网域，
 #: assets/forms/asset.py:132 assets/forms/asset.py:136
 #: assets/forms/domain.py:17 assets/forms/label.py:15
 #: perms/templates/perms/asset_permission_asset.html:78
-#: xpack/plugins/change_auth_plan/forms.py:55
+#: xpack/plugins/change_auth_plan/forms.py:64
 #: xpack/plugins/change_auth_plan/templates/change_auth_plan/plan_asset_list.html:74
 msgid "Select assets"
 msgstr "选择资产"
@@ -677,15 +678,15 @@ msgstr "选择资产"
 msgid "Content should not be contain: {}"
 msgstr "内容不能包含: {}"
 
-#: assets/forms/domain.py:51
+#: assets/forms/domain.py:55
 msgid "Password should not contain special characters"
 msgstr "不能包含特殊字符"
 
-#: assets/forms/domain.py:70
+#: assets/forms/domain.py:74
 msgid "SSH gateway support proxy SSH,RDP,VNC"
 msgstr "SSH网关，支持代理SSH,RDP和VNC"
 
-#: assets/forms/domain.py:74 assets/forms/user.py:76 assets/forms/user.py:96
+#: assets/forms/domain.py:78 assets/forms/user.py:76 assets/forms/user.py:96
 #: assets/models/base.py:29 assets/models/gathered_user.py:16
 #: assets/templates/assets/_asset_user_auth_update_modal.html:15
 #: assets/templates/assets/_asset_user_auth_view_modal.html:21
@@ -706,7 +707,7 @@ msgstr "SSH网关，支持代理SSH,RDP和VNC"
 #: users/templates/users/user_detail.html:67
 #: users/templates/users/user_list.html:36
 #: users/templates/users/user_profile.html:47
-#: xpack/plugins/change_auth_plan/forms.py:49
+#: xpack/plugins/change_auth_plan/forms.py:58
 #: xpack/plugins/change_auth_plan/models.py:65
 #: xpack/plugins/change_auth_plan/models.py:408
 #: xpack/plugins/change_auth_plan/templates/change_auth_plan/plan_detail.html:65
@@ -1451,7 +1452,7 @@ msgid "Update asset user auth"
 msgstr "更新资产用户认证信息"
 
 #: assets/templates/assets/_asset_user_auth_update_modal.html:23
-#: xpack/plugins/change_auth_plan/forms.py:51
+#: xpack/plugins/change_auth_plan/forms.py:60
 msgid "Please input password"
 msgstr "请输入密码"
 
@@ -1637,7 +1638,7 @@ msgstr "替换资产的管理员"
 
 #: assets/templates/assets/admin_user_detail.html:91
 #: perms/templates/perms/asset_permission_asset.html:103
-#: xpack/plugins/change_auth_plan/forms.py:59
+#: xpack/plugins/change_auth_plan/forms.py:68
 #: xpack/plugins/change_auth_plan/templates/change_auth_plan/plan_asset_list.html:99
 #: xpack/plugins/gathered_user/forms.py:36
 msgid "Select nodes"
@@ -1877,7 +1878,6 @@ msgstr "删除选择资产"
 #: users/templates/users/user_group_list.html:118
 #: users/templates/users/user_list.html:254
 #: xpack/plugins/interface/templates/interface/interface.html:101
-#: xpack/plugins/orgs/templates/orgs/org_create_update.html:33
 msgid "Cancel"
 msgstr "取消"
 
@@ -3394,33 +3394,33 @@ msgstr "远程应用授权用户列表"
 msgid "RemoteApp permission RemoteApp list"
 msgstr "远程应用授权远程应用列表"
 
-#: settings/api.py:27
+#: settings/api.py:28
 msgid "Test mail sent to {}, please check"
 msgstr "邮件已经发送{}, 请检查"
 
-#: settings/api.py:55
+#: settings/api.py:67
 msgid "Test ldap success"
 msgstr "连接LDAP成功"
 
-#: settings/api.py:92
+#: settings/api.py:104
 msgid "Match {} s users"
 msgstr "匹配 {} 个用户"
 
-#: settings/api.py:151
+#: settings/api.py:163
 msgid "succeed: {} failed: {} total: {}"
 msgstr "成功：{} 失败：{} 总数：{}"
 
-#: settings/api.py:173 settings/api.py:209
+#: settings/api.py:185 settings/api.py:221
 msgid ""
 "Error: Account invalid (Please make sure the information such as Access key "
 "or Secret key is correct)"
 msgstr "错误：账户无效 （请确保 Access key 或 Secret key 等信息正确）"
 
-#: settings/api.py:179 settings/api.py:215
+#: settings/api.py:191 settings/api.py:227
 msgid "Create succeed"
 msgstr "创建成功"
 
-#: settings/api.py:197 settings/api.py:235
+#: settings/api.py:209 settings/api.py:247
 #: settings/templates/settings/terminal_setting.html:154
 msgid "Delete succeed"
 msgstr "删除成功"
@@ -4536,7 +4536,7 @@ msgid ""
 "You should use your ssh client tools connect terminal: {} <br /> <br />{}"
 msgstr "你可以使用ssh客户端工具连接终端"
 
-#: users/api/user.py:176
+#: users/api/user.py:173
 msgid "Could not reset self otp, use profile reset instead"
 msgstr "不能再该页面重置MFA, 请去个人信息页面重置"
 
@@ -4874,7 +4874,7 @@ msgid "Always young, always with tears in my eyes. Stay foolish Stay hungry"
 msgstr "永远年轻，永远热泪盈眶 stay foolish stay hungry"
 
 #: users/templates/users/reset_password.html:46
-#: users/templates/users/user_detail.html:379 users/utils.py:84
+#: users/templates/users/user_detail.html:379 users/utils.py:83
 msgid "Reset password"
 msgstr "重置密码"
 
@@ -5190,61 +5190,57 @@ msgid ""
 "corresponding private key."
 msgstr "新的公钥已设置成功，请下载对应的私钥"
 
+# msgid "Update user"
+# msgstr "更新用户"
 #: users/utils.py:24
 #, python-format
 msgid ""
 "\n"
-"        <link rel=\"stylesheet\" href=\"//maxcdn.bootstrapcdn.com/"
-"bootstrap/3.2.0/css/bootstrap.min.css\">\n"
-"        <p style=\"text-indent:2em;\">\n"
-"            <span>\n"
-"                Username: %(username)s.\n"
-"            </span>\n"
-"            <span>\n"
-"                <a href=\"%(rest_password_url)s?token=%(rest_password_token)s"
-"\">click here to set your password</a>\n"
-"            </span>    \n"
-"            <span>\n"
-"                This link is valid for 1 hour. After it expires, <a href="
-"\"%(forget_password_url)s?email=%(email)s\">request new one</a>\n"
-"            </span> \n"
-"            <span>\n"
+"        <div>\n"
+"            <p>Your account has been created successfully</p>\n"
+"            <div>\n"
+"                Username: %(username)s\n"
+"                <br/>\n"
+"                Password: <a href=\"%(rest_password_url)s?token="
+"%(rest_password_token)s\">\n"
+"                click here to set your password</a> \n"
+"                (This link is valid for 1 hour. After it expires, <a href="
+"\"%(forget_password_url)s?email=%(email)s\">request new one</a>)\n"
+"            </div>\n"
+"            <div>\n"
+"                <p>---</p>\n"
 "                <a href=\"%(login_url)s\">Login direct</a>\n"
-"            </span>\n"
-"        </p>\n"
+"            </div>\n"
+"        </div>\n"
 "        "
 msgstr ""
 "\n"
-"    <link rel=\"stylesheet\" href=\"//maxcdn.bootstrapcdn.com/"
-"bootstrap/3.2.0/css/bootstrap.min.css\">\n"
-"    <p style=\"text-indent:2em;\">\n"
-"        <span>\n"
-"            用户名: %(username)s.\n"
-"        </span>\n"
-"        <span>\n"
-"            <a href=\"%(rest_password_url)s?token=%(rest_password_token)s\">"
-"请点击这里设置密码</a>\n"
-"        </span>    \n"
-"        <span>\n"
-"            这个链接有效期1小时, 超过时间您可以 <a href="
-"\"%(forget_password_url)s?email=%(email)s\">重新申请</a>\n"
-"        </span> \n"
-"        <span>\n"
-"            <a href=\"%(login_url)s\">---登录页面</a>\n"
-"        </span>\n"
-"    </p>\n"
-"    "
+"        <div>\n"
+"            <p>您的账户已创建成功</p>\n"
+"            <div>\n"
+"                用户名: %(username)s\n"
+"                <br/>\n"
+"                密码: <a href=\"%(rest_password_url)s?token="
+"%(rest_password_token)s\">请点击这里设置密码</a> (这个链接有效期1小时, 超过时"
+"间您可以 <a href=\"%(forget_password_url)s?email=%(email)s\">重新申请</a>)\n"
+"            </div>\n"
+"            <div>\n"
+"                <p>---</p>\n"
+"                <a href=\"%(login_url)s\">直接登录</a>\n"
+"            </div>\n"
+"        </div>\n"
+"        "
 
-#: users/utils.py:59
+#: users/utils.py:58
 msgid "Create account successfully"
 msgstr "创建账户成功"
 
-#: users/utils.py:63
+#: users/utils.py:62
 #, python-format
 msgid "Hello %(name)s"
 msgstr "您好 %(name)s"
 
-#: users/utils.py:86
+#: users/utils.py:85
 #, python-format
 msgid ""
 "\n"
@@ -5288,11 +5284,11 @@ msgstr ""
 "    <br>\n"
 "    "
 
-#: users/utils.py:117
+#: users/utils.py:116
 msgid "Security notice"
 msgstr "安全通知"
 
-#: users/utils.py:119
+#: users/utils.py:118
 #, python-format
 msgid ""
 "\n"
@@ -5341,11 +5337,11 @@ msgstr ""
 "    <br>\n"
 "    "
 
-#: users/utils.py:155
+#: users/utils.py:154
 msgid "Expiration notice"
 msgstr "过期通知"
 
-#: users/utils.py:157
+#: users/utils.py:156
 #, python-format
 msgid ""
 "\n"
@@ -5367,11 +5363,11 @@ msgstr ""
 "       <br>\n"
 "       "
 
-#: users/utils.py:176
+#: users/utils.py:175
 msgid "SSH Key Reset"
 msgstr "重置ssh密钥"
 
-#: users/utils.py:178
+#: users/utils.py:177
 #, python-format
 msgid ""
 "\n"
@@ -5485,7 +5481,7 @@ msgstr "MFA 解绑成功，返回登录页面"
 msgid "Password length"
 msgstr "密码长度"
 
-#: xpack/plugins/change_auth_plan/forms.py:66
+#: xpack/plugins/change_auth_plan/forms.py:75
 #: xpack/plugins/change_auth_plan/templates/change_auth_plan/plan_create_update.html:60
 #: xpack/plugins/change_auth_plan/templates/change_auth_plan/plan_detail.html:81
 #: xpack/plugins/change_auth_plan/templates/change_auth_plan/plan_list.html:17
@@ -5499,7 +5495,7 @@ msgstr "密码长度"
 msgid "Periodic perform"
 msgstr "定时执行"
 
-#: xpack/plugins/change_auth_plan/forms.py:70
+#: xpack/plugins/change_auth_plan/forms.py:79
 msgid ""
 "Tips: The username of the user on the asset to be modified. if the user "
 "exists, change the password; If the user does not exist, create the user."
@@ -5507,12 +5503,12 @@ msgstr ""
 "提示：用户名为将要修改的资产上的用户的用户名。如果用户存在，则修改密码；如果"
 "用户不存在，则创建用户。"
 
-#: xpack/plugins/change_auth_plan/forms.py:74 xpack/plugins/cloud/forms.py:90
+#: xpack/plugins/change_auth_plan/forms.py:83 xpack/plugins/cloud/forms.py:90
 #: xpack/plugins/gathered_user/forms.py:44
 msgid "Tips: (Units: hour)"
 msgstr "提示：（单位： 时）"
 
-#: xpack/plugins/change_auth_plan/forms.py:75 xpack/plugins/cloud/forms.py:91
+#: xpack/plugins/change_auth_plan/forms.py:84 xpack/plugins/cloud/forms.py:91
 #: xpack/plugins/gathered_user/forms.py:45
 msgid ""
 "eg: Every Sunday 03:05 run <5 3 * * 0> <br> Tips: Using 5 digits linux "
@@ -6307,45 +6303,6 @@ msgstr "创建"
 #~ msgid "Update user groups"
 #~ msgstr "更新用户组"
 
-# msgid "Update user"
-# msgstr "更新用户"
-#~ msgid ""
-#~ "\n"
-#~ "        <link rel=\"stylesheet\" href=\"//maxcdn.bootstrapcdn.com/"
-#~ "bootstrap/3.2.0/css/bootstrap.min.css\">\n"
-#~ "        <p style=\"text-indent:2em;\">\n"
-#~ "            <span>\n"
-#~ "                <a href=\"%(rest_password_url)s?token="
-#~ "%(rest_password_token)s\">click here to set your password</a>\n"
-#~ "            </span>    \n"
-#~ "            <span>\n"
-#~ "                This link is valid for 1 hour. After it expires, <a href="
-#~ "\"%(forget_password_url)s?email=%(email)s\">request new one</a>\n"
-#~ "            </span> \n"
-#~ "            <span>\n"
-#~ "                <a href=\"%(login_url)s\">Login direct</a>\n"
-#~ "            </span>\n"
-#~ "        </p>\n"
-#~ "        "
-#~ msgstr ""
-#~ "\n"
-#~ "        <link rel=\"stylesheet\" href=\"//maxcdn.bootstrapcdn.com/"
-#~ "bootstrap/3.2.0/css/bootstrap.min.css\">\n"
-#~ "        <p style=\"text-indent:2em;\">\n"
-#~ "            <span>\n"
-#~ "                <a href=\"%(rest_password_url)s?token="
-#~ "%(rest_password_token)s\">请点击这里设置密码</a>\n"
-#~ "            </span>    \n"
-#~ "            <span>\n"
-#~ "                这个链接有效期1小时, 超过时间您可以, <a href="
-#~ "\"%(forget_password_url)s?email=%(email)s\">重新申请</a>\n"
-#~ "            </span> \n"
-#~ "            <span>\n"
-#~ "                <a href=\"%(login_url)s\">Login direct</a>\n"
-#~ "            </span>\n"
-#~ "        </p>\n"
-#~ "        "
-
 #~ msgid "Template"
 #~ msgstr "模板"
 
diff --git a/apps/settings/api.py b/apps/settings/api.py
index d327bde17..22a295b68 100644
--- a/apps/settings/api.py
+++ b/apps/settings/api.py
@@ -5,6 +5,7 @@ import os
 import json
 import jms_storage
 
+from smtplib import SMTPSenderRefused
 from rest_framework import generics
 from rest_framework.views import Response, APIView
 from django.conf import settings
@@ -41,9 +42,20 @@ class MailTestingAPI(APIView):
                 email_from = email_from or email_host_user
                 email_recipient = email_recipient or email_from
                 send_mail(subject, message,  email_from, [email_recipient])
+            except SMTPSenderRefused as e:
+                resp = e.smtp_error
+                if isinstance(resp, bytes):
+                    for coding in ('gbk', 'utf8'):
+                        try:
+                            resp = resp.decode(coding)
+                        except UnicodeDecodeError:
+                            continue
+                        else:
+                            break
+                return Response({"error": str(resp)}, status=401)
             except Exception as e:
+                print(e)
                 return Response({"error": str(e)}, status=401)
-
             return Response({"msg": self.success_message.format(email_recipient)})
         else:
             return Response({"error": str(serializer.errors)}, status=401)
diff --git a/apps/users/utils.py b/apps/users/utils.py
index 59400694e..30868358c 100644
--- a/apps/users/utils.py
+++ b/apps/users/utils.py
@@ -22,21 +22,20 @@ logger = logging.getLogger('jumpserver')
 
 def construct_user_created_email_body(user):
     default_body = _("""
-        <link rel="stylesheet" href="//maxcdn.bootstrapcdn.com/bootstrap/3.2.0/css/bootstrap.min.css">
-        <p style="text-indent:2em;">
-            <span>
-                Username: %(username)s.
-            </span>
-            <span>
-                <a href="%(rest_password_url)s?token=%(rest_password_token)s">click here to set your password</a>
-            </span>    
-            <span>
-                This link is valid for 1 hour. After it expires, <a href="%(forget_password_url)s?email=%(email)s">request new one</a>
-            </span> 
-            <span>
+        <div>
+            <p>Your account has been created successfully</p>
+            <div>
+                Username: %(username)s
+                <br/>
+                Password: <a href="%(rest_password_url)s?token=%(rest_password_token)s">
+                click here to set your password</a> 
+                (This link is valid for 1 hour. After it expires, <a href="%(forget_password_url)s?email=%(email)s">request new one</a>)
+            </div>
+            <div>
+                <p>---</p>
                 <a href="%(login_url)s">Login direct</a>
-            </span>
-        </p>
+            </div>
+        </div>
         """) % {
         'username': user.username,
         'rest_password_url': reverse('users:reset-password', external=True),

From f984acf1b2a9eae90df4dccc1beefa13ccaf03c6 Mon Sep 17 00:00:00 2001
From: ibuler <ibuler@qq.com>
Date: Mon, 21 Oct 2019 17:14:49 +0800
Subject: [PATCH 02/10] =?UTF-8?q?[Bugfix]=20=E4=BF=AE=E5=A4=8D=E5=AF=BC?=
 =?UTF-8?q?=E8=87=B4favorite=20=E5=92=8C=20empty=20=E5=90=8C=E6=97=B6?=
 =?UTF-8?q?=E5=87=BA=E7=8E=B0?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 apps/perms/utils/asset_permission.py | 5 ++++-
 1 file changed, 4 insertions(+), 1 deletion(-)

diff --git a/apps/perms/utils/asset_permission.py b/apps/perms/utils/asset_permission.py
index 6754511d0..84da4e337 100644
--- a/apps/perms/utils/asset_permission.py
+++ b/apps/perms/utils/asset_permission.py
@@ -234,6 +234,9 @@ class AssetPermissionUtilV2(AssetPermissionUtilCacheMixin):
             if user_tree.contains(key):
                 nodes_single_assets.pop(key)
 
+        if not nodes_single_assets:
+            return
+
         # 如果要设置到ungroup中
         if settings.PERM_SINGLE_ASSET_TO_UNGROUP_NODE:
             node_key = Node.ungrouped_key
@@ -336,8 +339,8 @@ class AssetPermissionUtilV2(AssetPermissionUtilCacheMixin):
         self.add_direct_nodes_to_user_tree(user_tree)
         self.add_single_assets_node_to_user_tree(user_tree)
         self.parse_user_tree_to_full_tree(user_tree)
-        self.add_empty_node_if_need(user_tree)
         self.add_favorite_node_if_need(user_tree)
+        self.add_empty_node_if_need(user_tree)
         self.set_user_tree_to_cache_if_need(user_tree)
         self.set_user_tree_to_local(user_tree)
         return user_tree

From 86522627d3971f8af5127b28913f45b7657413cb Mon Sep 17 00:00:00 2001
From: ibuler <ibuler@qq.com>
Date: Mon, 21 Oct 2019 19:07:35 +0800
Subject: [PATCH 03/10] =?UTF-8?q?[Update]=20=E4=BC=98=E5=8C=96=E6=8F=90?=
 =?UTF-8?q?=E4=BA=A4api=E6=8A=A5=E9=94=99=E6=97=B6=E6=BB=9A=E5=8A=A8?=
 =?UTF-8?q?=E5=88=B0=EF=BC=8C=E4=BC=98=E5=8C=96table=E9=A1=B5=E9=9D=A2?=
 =?UTF-8?q?=E6=9F=90=E4=BA=9B=E5=88=97=E5=AE=BD=E5=BA=A6?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 .../templates/assets/admin_user_list.html     | 39 +------------------
 apps/assets/templates/assets/asset_list.html  |  2 +-
 .../templates/assets/cmd_filter_list.html     |  3 +-
 apps/assets/templates/assets/domain_list.html |  2 +-
 apps/assets/templates/assets/label_list.html  |  3 +-
 .../templates/assets/system_user_list.html    |  6 +--
 .../perms/asset_permission_list.html          |  2 +-
 apps/static/js/jumpserver.js                  |  5 ++-
 .../templates/users/user_group_list.html      |  2 +-
 apps/users/templates/users/user_list.html     |  2 +-
 10 files changed, 15 insertions(+), 51 deletions(-)

diff --git a/apps/assets/templates/assets/admin_user_list.html b/apps/assets/templates/assets/admin_user_list.html
index 9568ceb30..7a4b2a2dc 100644
--- a/apps/assets/templates/assets/admin_user_list.html
+++ b/apps/assets/templates/assets/admin_user_list.html
@@ -70,43 +70,6 @@ function initTable() {
                 var detail_btn = '<a href="{% url "assets:admin-user-detail" pk=DEFAULT_PK %}">' + cellData + '</a>';
                 return detail_btn.replace('{{ DEFAULT_PK }}', rowData.id);
             }},
-            {#{targets: 4, createdCell: function (td, cellData) {#}
-            {#    var innerHtml = "";#}
-            {#    var data = cellData.reachable;#}
-            {#    if (data !== 0) {#}
-            {#        innerHtml = "<span class='text-navy'>" + data + "</span>";#}
-            {#    } else {#}
-            {#        innerHtml = "<span>" + data + "</span>";#}
-            {#    }#}
-            {#    $(td).html(innerHtml)#}
-            {#}},#}
-            {#{targets: 5, createdCell: function (td, cellData) {#}
-            {#    var data = cellData.unreachable;#}
-            {#    var innerHtml = "";#}
-            {#    if (data !== 0) {#}
-            {#        innerHtml = "<span class='text-danger'>" + data + "</span>";#}
-            {#    } else {#}
-            {#        innerHtml = "<span>" + data + "</span>";#}
-            {#    }#}
-            {#    $(td).html('<span href="javascript:void(0);" data-toggle="tooltip" title="' + data + '">' + innerHtml + '</span>');#}
-            {#}},#}
-            {#{targets: 6, createdCell: function (td, cellData, rowData) {#}
-            {#    var val = 0;#}
-            {#    var innerHtml = "";#}
-            {#    var total = rowData.assets_amount;#}
-            {#    var reachable = cellData.reachable;#}
-            {#    if (total !== 0) {#}
-            {#        val = reachable/total * 100;#}
-            {#    }#}
-            {##}
-            {#    if (val === 100) {#}
-            {#        innerHtml = "<span class='text-navy'>" + val + "% </span>";#}
-            {#    } else {#}
-            {#        var num = new Number(val);#}
-            {#        innerHtml = "<span class='text-danger'>" + num.toFixed(1) + "% </span>";#}
-            {#    }#}
-            {#    $(td).html('<span href="javascript:void(0);" data-toggle="tooltip" title="' + cellData + '">' + innerHtml + '</span>');#}
-            {#}},#}
             {targets: 5, createdCell: function (td, cellData, rowData) {
                 var update_btn = '<a href="{% url "assets:admin-user-update" pk=DEFAULT_PK %}" class="btn btn-xs m-l-xs btn-info">{% trans "Update" %}</a>'.replace('{{ DEFAULT_PK }}', cellData);
                 var del_btn = '<a class="btn btn-xs btn-danger m-l-xs btn_admin_user_delete" data-uid="{{ DEFAULT_PK }}">{% trans "Delete" %}</a>'.replace('{{ DEFAULT_PK }}', cellData);
@@ -116,7 +79,7 @@ function initTable() {
         columns: [
             {data: function(){return ""}}, {data: "name"}, {data: "username" }, {data: "assets_amount", orderable: false},
             {#{data: "connectivity_amount"}, {data: "connectivity_amount"}, {data: "connectivity_amount"},#}
-            {data: "comment"}, {data: "id", orderable: false}
+            {data: "comment"}, {data: "id", orderable: false, width: "100px"}
         ]
     };
     admin_user_table = jumpserver.initServerSideDataTable(options);
diff --git a/apps/assets/templates/assets/asset_list.html b/apps/assets/templates/assets/asset_list.html
index b9892790d..63f31a0c6 100644
--- a/apps/assets/templates/assets/asset_list.html
+++ b/apps/assets/templates/assets/asset_list.html
@@ -177,7 +177,7 @@ function initTable() {
                 data: "connectivity",
                 orderable: false,
                 width: '60px'
-            }, {data: "id", orderable: false}
+            }, {data: "id", orderable: false, width: "100px"}
         ],
         op_html: $('#actions').html()
     };
diff --git a/apps/assets/templates/assets/cmd_filter_list.html b/apps/assets/templates/assets/cmd_filter_list.html
index b6d46a2c8..0582363c4 100644
--- a/apps/assets/templates/assets/cmd_filter_list.html
+++ b/apps/assets/templates/assets/cmd_filter_list.html
@@ -63,7 +63,8 @@ function initTable() {
         ajax_url: '{% url "api-assets:cmd-filter-list" %}',
         columns: [
             {data: "id"}, {data: "name" }, {data: "rules", orderable: false},
-            {data: "system_users", orderable: false}, {data: "comment"}, {data: "id", orderable: false}
+            {data: "system_users", orderable: false}, {data: "comment"},
+            {data: "id", orderable: false, width: "100px"}
         ],
         op_html: $('#actions').html()
     };
diff --git a/apps/assets/templates/assets/domain_list.html b/apps/assets/templates/assets/domain_list.html
index 6a0f36f40..2b82826a0 100644
--- a/apps/assets/templates/assets/domain_list.html
+++ b/apps/assets/templates/assets/domain_list.html
@@ -59,7 +59,7 @@ function initTable() {
         ajax_url: '{% url "api-assets:domain-list" %}',
         columns: [
             {data: "id"}, {data: "name" }, {data: "asset_count", orderable: false },
-            {data: "gateway_count", orderable: false }, {data: "comment" }, {data: "id", orderable: false}
+            {data: "gateway_count", orderable: false }, {data: "comment" }, {data: "id", orderable: false, width: "100px"}
         ],
         op_html: $('#actions').html()
     };
diff --git a/apps/assets/templates/assets/label_list.html b/apps/assets/templates/assets/label_list.html
index 7d780deed..9ab735f7a 100644
--- a/apps/assets/templates/assets/label_list.html
+++ b/apps/assets/templates/assets/label_list.html
@@ -44,7 +44,8 @@ function initTable() {
         ajax_url: '{% url "api-assets:label-list" %}?sort=name',
         columns: [
             {data: "id"}, {data: "name" }, {data: "value" },
-            {data: "asset_count", orderable: false}, {data: "id", orderable: false}
+            {data: "asset_count", orderable: false},
+            {data: "id", orderable: false, width: "100px"}
         ],
         op_html: $('#actions').html()
     };
diff --git a/apps/assets/templates/assets/system_user_list.html b/apps/assets/templates/assets/system_user_list.html
index dcfaac8cc..e6b259585 100644
--- a/apps/assets/templates/assets/system_user_list.html
+++ b/apps/assets/templates/assets/system_user_list.html
@@ -3,10 +3,6 @@
 
 {% block help_message %}
     <div class="alert alert-info help-message">
-{#    系统用户是 Jumpserver跳转登录资产时使用的用户，可以理解为登录资产用户，如 web, sa, dba(`ssh web@some-host`), 而不是使用某个用户的用户名跳转登录服务器(`ssh xiaoming@some-host`);#}
-{#    简单来说是 用户使用自己的用户名登录Jumpserver, Jumpserver使用系统用户登录资产。#}
-{#    系统用户创建时，如果选择了自动推送 Jumpserver会使用ansible自动推送系统用户到资产中，如果资产(交换机、windows)不支持ansible, 请手动填写账号密码。#}
-{#    目前还不支持Windows的自动推送#}
     {% trans 'System user is Jumpserver jump login assets used by the users, can be understood as the user login assets, such as web, sa, the dba (` ssh web@some-host `), rather than using a user the username login server jump (` ssh xiaoming@some-host `); '%}
     {% trans 'In simple terms, users log into Jumpserver using their own username, and Jumpserver uses system users to log into assets. '%}
     {% trans 'When system users are created, if you choose auto push Jumpserver to use Ansible push system users into the asset, if the asset (Switch) does not support ansible, please manually fill in the account password.' %}
@@ -91,7 +87,7 @@ function initTable() {
         columns: [
             {data: "id" }, {data: "name" }, {data: "username" }, {data: "protocol"},
             {data: "login_mode"}, {data: "assets_amount", orderable: false },
-            {data: "comment" }, {data: "id", orderable: false }
+            {data: "comment" }, {data: "id", orderable: false, width: "100px"}
         ],
         op_html: $('#actions').html()
     };
diff --git a/apps/perms/templates/perms/asset_permission_list.html b/apps/perms/templates/perms/asset_permission_list.html
index 2a493e16b..18e30bde8 100644
--- a/apps/perms/templates/perms/asset_permission_list.html
+++ b/apps/perms/templates/perms/asset_permission_list.html
@@ -190,7 +190,7 @@ function initTable() {
             {data: "id"}, {data: "name"}, {data: "users", orderable: false},
             {data: "user_groups", orderable: false}, {data: "assets", orderable: false},
             {data: "nodes", orderable: false}, {data: "system_users", orderable: false},
-            {data: "is_valid", orderable: false}, {data: "id", orderable: false}
+            {data: "is_valid", orderable: false}, {data: "id", orderable: false, width: "100px"}
         ],
         select: {},
         op_html: $('#actions').html()
diff --git a/apps/static/js/jumpserver.js b/apps/static/js/jumpserver.js
index 4f55cfb4f..4dceb01bf 100644
--- a/apps/static/js/jumpserver.js
+++ b/apps/static/js/jumpserver.js
@@ -201,7 +201,7 @@ function formSubmit(props) {
             var errors = jqXHR.responseJSON;
             var noneFieldErrorRef = props.form.children('.alert-danger');
             if (noneFieldErrorRef.length !== 1) {
-                props.form.prepend('<div class="alert alert-danger" style="display: none"></div>');
+                props.form.prepend('<div class="alert alert-danger has-error" style="display: none"></div>');
                 noneFieldErrorRef = props.form.children('.alert-danger');
             }
             var noneFieldErrorMsg = "";
@@ -247,6 +247,7 @@ function formSubmit(props) {
                 noneFieldErrorRef.css('display', 'block');
                 noneFieldErrorRef.html(noneFieldErrorMsg);
             }
+            $('.has-error').get(0).scrollIntoView();
         }
 
     })
@@ -453,6 +454,7 @@ jumpserver.initDataTable = function (options) {
         {
             targets: 0,
             orderable: false,
+            width: "20px",
             createdCell: function (td, cellData) {
                 $(td).html('<input type="checkbox" class="text-center ipt_check" id=99991937>'.replace('99991937', cellData));
             }
@@ -550,6 +552,7 @@ jumpserver.initServerSideDataTable = function (options) {
         {
             targets: 0,
             orderable: false,
+            width: "20px",
             createdCell: function (td, cellData) {
                 $(td).html('<input type="checkbox" class="text-center ipt_check" id=99991937>'.replace('99991937', cellData));
             }
diff --git a/apps/users/templates/users/user_group_list.html b/apps/users/templates/users/user_group_list.html
index c2fa87357..3eb70e319 100644
--- a/apps/users/templates/users/user_group_list.html
+++ b/apps/users/templates/users/user_group_list.html
@@ -82,7 +82,7 @@ function initTable() {
         ],
         ajax_url: '{% url "api-users:user-group-list" %}?display=1',
         columns: [{data: function(){return ""}}, {data: "name" }, {data: "users", orderable: false},
-                  {data: "comment"}, {data: "id", orderable: false }],
+                  {data: "comment"}, {data: "id", orderable: false, width:"100px"}],
         order: [],
         op_html: $('#actions').html()
     };
diff --git a/apps/users/templates/users/user_list.html b/apps/users/templates/users/user_list.html
index d992416d1..cd9273681 100644
--- a/apps/users/templates/users/user_list.html
+++ b/apps/users/templates/users/user_list.html
@@ -125,7 +125,7 @@ function initTable() {
             {data: "groups_display", orderable: false},
             {data: "source"},
             {data: "is_valid", orderable: false},
-            {data: "id", orderable: false}
+            {data: "id", orderable: false, width: "100px"}
         ],
         op_html: $('#actions').html()
     };

From 6ebe8e16bdffe0c472701c7093e79974e7121db7 Mon Sep 17 00:00:00 2001
From: ibuler <ibuler@qq.com>
Date: Mon, 21 Oct 2019 19:28:33 +0800
Subject: [PATCH 04/10] =?UTF-8?q?[Update]=20=E4=BF=AE=E6=94=B9=E8=AF=BB?=
 =?UTF-8?q?=E5=8F=96=E6=97=A5=E5=BF=97=E6=97=B6=E5=8F=AF=E8=83=BD=E8=A7=A3?=
 =?UTF-8?q?=E7=A0=81=E5=A4=B1=E8=B4=A5?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 apps/common/utils/encode.py |  4 ++++
 apps/ops/ws.py              | 20 ++++++++++++++------
 2 files changed, 18 insertions(+), 6 deletions(-)

diff --git a/apps/common/utils/encode.py b/apps/common/utils/encode.py
index fc9467cba..d4e9c4cbe 100644
--- a/apps/common/utils/encode.py
+++ b/apps/common/utils/encode.py
@@ -182,3 +182,7 @@ def encrypt_password(password, salt=None):
 def get_signer():
     signer = Signer(settings.SECRET_KEY)
     return signer
+
+
+def ensure_last_char_is_ascii(data):
+    remain = ''
diff --git a/apps/ops/ws.py b/apps/ops/ws.py
index 1d2bea3c5..d6bff86a7 100644
--- a/apps/ops/ws.py
+++ b/apps/ops/ws.py
@@ -3,11 +3,13 @@ import os
 import threading
 import json
 
-from celery.result import AsyncResult
+from common.utils import get_logger
 
 from .celery.utils import get_celery_task_log_path
 from channels.generic.websocket import JsonWebsocketConsumer
 
+logger = get_logger(__name__)
+
 
 class CeleryLogWebsocket(JsonWebsocketConsumer):
     disconnected = False
@@ -22,6 +24,7 @@ class CeleryLogWebsocket(JsonWebsocketConsumer):
             self.handle_task(task_id)
 
     def handle_task(self, task_id):
+        logger.info("Task id: {}".format(task_id))
         log_path = get_celery_task_log_path(task_id)
 
         def func():
@@ -34,19 +37,24 @@ class CeleryLogWebsocket(JsonWebsocketConsumer):
                     continue
                 self.send_json({'message': '\r\n'})
                 try:
-                    task_log_f = open(log_path)
+                    logger.debug('Task log path: {}'.format(log_path))
+                    task_log_f = open(log_path, 'rb')
                     break
                 except OSError:
                     return
 
+            if not task_log_f:
+                return
+
             while not self.disconnected:
                 data = task_log_f.readline()
+
                 if data:
-                    data = data.replace('\n', '\r\n')
-                    self.send_json({'message': data, 'task': task_id})
-                    if data.startswith('Task') and data.find('succeeded'):
+                    data = data.replace(b'\n', b'\r\n')
+                    self.send_json({'message': data.decode(errors='ignore'), 'task': task_id})
+                    if data.startswith(b'Task') and data.find(b'succeeded'):
                         break
-                time.sleep(0.2)
+                time.sleep(0.1)
             task_log_f.close()
         thread = threading.Thread(target=func)
         thread.start()

From a2f8f433215ed701579e6d2b7c3768846bc5f5c9 Mon Sep 17 00:00:00 2001
From: ibuler <ibuler@qq.com>
Date: Tue, 22 Oct 2019 11:31:15 +0800
Subject: [PATCH 05/10] =?UTF-8?q?[Update]=20=E4=BF=AE=E6=94=B9=E6=9F=A5?=
 =?UTF-8?q?=E7=9C=8Bauth=20info=E5=8F=AF=E4=BB=A5=E5=85=B3=E9=97=ADmfa?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 apps/assets/api/asset_user.py                     | 15 +++++++++++++--
 apps/assets/backends/manager.py                   |  4 ++--
 .../assets/templates/assets/_asset_user_list.html |  5 +++++
 apps/jumpserver/conf.py                           |  1 +
 apps/jumpserver/context_processor.py              |  1 +
 5 files changed, 22 insertions(+), 4 deletions(-)

diff --git a/apps/assets/api/asset_user.py b/apps/assets/api/asset_user.py
index d3824f676..a07544e57 100644
--- a/apps/assets/api/asset_user.py
+++ b/apps/assets/api/asset_user.py
@@ -7,6 +7,7 @@ from rest_framework import filters
 from rest_framework_bulk import BulkModelViewSet
 from django.shortcuts import get_object_or_404
 from django.http import Http404
+from django.conf import settings
 
 from common.permissions import IsOrgAdminOrAppUser, NeedMFAVerify
 from common.utils import get_object_or_none, get_logger
@@ -110,12 +111,22 @@ class AssetUserViewSet(CommonApiMixin, BulkModelViewSet):
 class AssetUserExportViewSet(AssetUserViewSet):
     serializer_class = serializers.AssetUserExportSerializer
     http_method_names = ['get']
-    permission_classes = [IsOrgAdminOrAppUser, NeedMFAVerify]
+    permission_classes = [IsOrgAdminOrAppUser]
+
+    def get_permissions(self):
+        if settings.CONFIG.SECURITY_VIEW_AUTH_NEED_MFA:
+            self.permission_classes = [IsOrgAdminOrAppUser, NeedMFAVerify]
+        return super().get_permissions()
 
 
 class AssetUserAuthInfoApi(generics.RetrieveAPIView):
     serializer_class = serializers.AssetUserAuthInfoSerializer
-    permission_classes = [IsOrgAdminOrAppUser, NeedMFAVerify]
+    permission_classes = [IsOrgAdminOrAppUser]
+
+    def get_permissions(self):
+        if settings.CONFIG.SECURITY_VIEW_AUTH_NEED_MFA:
+            self.permission_classes = [IsOrgAdminOrAppUser, NeedMFAVerify]
+        return super().get_permissions()
 
     def get_object(self):
         query_params = self.request.query_params
diff --git a/apps/assets/backends/manager.py b/apps/assets/backends/manager.py
index 201f19d43..75b9c38b8 100644
--- a/apps/assets/backends/manager.py
+++ b/apps/assets/backends/manager.py
@@ -41,8 +41,8 @@ class AssetUserManager:
         instances_map = {}
         instances = []
         for name, backend in self.backends:
-            if name != "db" and self._prefer != name:
-                continue
+            # if name != "db":
+            #     continue
             _instances = backend.filter(
                 username=username, assets=assets, latest=latest,
                 prefer=self._prefer, prefer_id=prefer_id,
diff --git a/apps/assets/templates/assets/_asset_user_list.html b/apps/assets/templates/assets/_asset_user_list.html
index a85a3056d..0d7c86be3 100644
--- a/apps/assets/templates/assets/_asset_user_list.html
+++ b/apps/assets/templates/assets/_asset_user_list.html
@@ -40,6 +40,7 @@ var prefer = null;
 var lastMFATime = "{{ request.session.MFA_VERIFY_TIME }}";
 var testDatetime = "{% trans 'Test datetime: ' %}";
 var mfaVerifyTTL = "{{ SECURITY_MFA_VERIFY_TTL }}";
+var mfaNeedCheck = "{{ SECURITY_VIEW_AUTH_NEED_MFA }}";
 
 function initAssetUserTable() {
     var options = {
@@ -112,6 +113,10 @@ $(document).ready(function(){
     authAssetId = $(this).data("asset") ;
     authHostname = $(this).data("hostname");
     authUsername = $(this).data('user');
+    if (mfaNeedCheck !== 'True') {
+        $("#asset_user_auth_view").modal('show');
+        return
+    }
     var now = new Date();
     var nowTime = now.getTime() / 1000;
     if ( !lastMFATime || nowTime - lastMFATime > mfaVerifyTTL ) {
diff --git a/apps/jumpserver/conf.py b/apps/jumpserver/conf.py
index 0df26d149..29dfeabbe 100644
--- a/apps/jumpserver/conf.py
+++ b/apps/jumpserver/conf.py
@@ -361,6 +361,7 @@ defaults = {
     'TERMINAL_COMMAND_STORAGE': {},
     'SECURITY_MFA_AUTH': False,
     'SECURITY_SERVICE_ACCOUNT_REGISTRATION': True,
+    'SECURITY_VIEW_AUTH_NEED_MFA': True,
     'SECURITY_LOGIN_LIMIT_COUNT': 7,
     'SECURITY_LOGIN_LIMIT_TIME': 30,
     'SECURITY_MAX_IDLE_TIME': 30,
diff --git a/apps/jumpserver/context_processor.py b/apps/jumpserver/context_processor.py
index 91a720fd7..0bd5186dd 100644
--- a/apps/jumpserver/context_processor.py
+++ b/apps/jumpserver/context_processor.py
@@ -18,6 +18,7 @@ def jumpserver_processor(request):
         'COPYRIGHT': 'FIT2CLOUD 飞致云' + ' © 2014-2019',
         'SECURITY_COMMAND_EXECUTION': settings.SECURITY_COMMAND_EXECUTION,
         'SECURITY_MFA_VERIFY_TTL': settings.SECURITY_MFA_VERIFY_TTL,
+        'SECURITY_VIEW_AUTH_NEED_MFA': settings.CONFIG.SECURITY_VIEW_AUTH_NEED_MFA,
     }
     return context
 

From 3a10fd4160021cc0e52dcade5657947dd79b510f Mon Sep 17 00:00:00 2001
From: ibuler <ibuler@qq.com>
Date: Tue, 22 Oct 2019 12:16:50 +0800
Subject: [PATCH 06/10] =?UTF-8?q?[Update]=20=E4=BF=AE=E6=94=B9=E6=9F=A5?=
 =?UTF-8?q?=E7=9C=8Bauth=20info=E5=8F=AF=E4=BB=A5=E5=85=B3=E9=97=ADmfa?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 apps/assets/templates/assets/_asset_user_list.html | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/apps/assets/templates/assets/_asset_user_list.html b/apps/assets/templates/assets/_asset_user_list.html
index 0d7c86be3..3321e2578 100644
--- a/apps/assets/templates/assets/_asset_user_list.html
+++ b/apps/assets/templates/assets/_asset_user_list.html
@@ -40,7 +40,7 @@ var prefer = null;
 var lastMFATime = "{{ request.session.MFA_VERIFY_TIME }}";
 var testDatetime = "{% trans 'Test datetime: ' %}";
 var mfaVerifyTTL = "{{ SECURITY_MFA_VERIFY_TTL }}";
-var mfaNeedCheck = "{{ SECURITY_VIEW_AUTH_NEED_MFA }}";
+var mfaNeedCheck = "{{ SECURITY_VIEW_AUTH_NEED_MFA }}" === "True";
 
 function initAssetUserTable() {
     var options = {
@@ -113,7 +113,7 @@ $(document).ready(function(){
     authAssetId = $(this).data("asset") ;
     authHostname = $(this).data("hostname");
     authUsername = $(this).data('user');
-    if (mfaNeedCheck !== 'True') {
+    if (!mfaNeedCheck){
         $("#asset_user_auth_view").modal('show');
         return
     }

From 82a636956894ca651f3ff723e7d955347edb2d98 Mon Sep 17 00:00:00 2001
From: ibuler <ibuler@qq.com>
Date: Tue, 22 Oct 2019 15:38:49 +0800
Subject: [PATCH 07/10] =?UTF-8?q?[Update]=20=E4=BF=AE=E6=94=B9term?=
 =?UTF-8?q?=E5=A4=A7=E5=B0=8F?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 apps/assets/backends/manager.py               |  2 +
 apps/ops/templates/ops/celery_task_log.html   |  5 ++-
 .../ops/command_execution_create.html         | 44 +------------------
 apps/perms/urls/api_urls.py                   | 18 ++++----
 4 files changed, 17 insertions(+), 52 deletions(-)

diff --git a/apps/assets/backends/manager.py b/apps/assets/backends/manager.py
index 75b9c38b8..ac81307df 100644
--- a/apps/assets/backends/manager.py
+++ b/apps/assets/backends/manager.py
@@ -67,6 +67,8 @@ class AssetUserManager:
         return AssetUserQuerySet(instances)
 
     def get(self, username, asset, **kwargs):
+        print(username)
+        print(asset)
         instances = self.filter(username, assets=[asset], **kwargs)
         if len(instances) == 1:
             return instances[0]
diff --git a/apps/ops/templates/ops/celery_task_log.html b/apps/ops/templates/ops/celery_task_log.html
index 8e99c356d..c7f177c6e 100644
--- a/apps/ops/templates/ops/celery_task_log.html
+++ b/apps/ops/templates/ops/celery_task_log.html
@@ -4,6 +4,7 @@
     <title>{% trans 'Task log' %}</title>
     <script src="{% static 'js/jquery-3.1.1.min.js' %}"></script>
     <script src="{% static 'js/plugins/xterm/xterm.js' %}"></script>
+    <script src="{% static 'js/plugins/xterm/addons/fit/fit.js' %}"></script>
     <link rel="stylesheet" href="{% static 'js/plugins/xterm/xterm.css' %}" />
     <style>
         body {
@@ -40,7 +41,7 @@
             disableStdin: true
         });
         term.open(document.getElementById('term'));
-        term.resize(120, 30);
+        window.fit.fit(term);
 
         ws = new WebSocket(wsURL);
         ws.onmessage = function(e) {
@@ -61,5 +62,7 @@
                 term.write("Connect websocket server error")
             }
         }
+    }).on('resize', window, function () {
+        window.fit.fit(term);
     });
 </script>
diff --git a/apps/ops/templates/ops/command_execution_create.html b/apps/ops/templates/ops/command_execution_create.html
index f550c51d3..426cdfda0 100644
--- a/apps/ops/templates/ops/command_execution_create.html
+++ b/apps/ops/templates/ops/command_execution_create.html
@@ -104,41 +104,6 @@
         var url = null;
         var treeUrl = "{% url 'api-perms:my-nodes-with-assets-as-tree' %}?cache_policy=1";
 
-        function proposeGeometry(term) {
-            if (!term.element.parentElement) {
-                return null;
-            }
-            var parentElementStyle = window.getComputedStyle(term.element.parentElement);
-            var parentElementHeight = parseInt(parentElementStyle.getPropertyValue('height'));
-            var parentElementWidth = Math.max(0, parseInt(parentElementStyle.getPropertyValue('width')));
-            var elementStyle = window.getComputedStyle(term.element);
-            var elementPadding = {
-                top: parseInt(elementStyle.getPropertyValue('padding-top')),
-                bottom: parseInt(elementStyle.getPropertyValue('padding-bottom')),
-                right: parseInt(elementStyle.getPropertyValue('padding-right')),
-                left: parseInt(elementStyle.getPropertyValue('padding-left'))
-            };
-            var elementPaddingVer = elementPadding.top + elementPadding.bottom;
-            var elementPaddingHor = elementPadding.right + elementPadding.left;
-            var availableHeight = parentElementHeight - elementPaddingVer;
-            var availableWidth = parentElementWidth - elementPaddingHor - term._core.viewport.scrollBarWidth;
-            var geometry = {
-                cols: Math.floor(availableWidth / term._core.renderer.dimensions.actualCellWidth),
-                rows: Math.floor(availableHeight / term._core.renderer.dimensions.actualCellHeight)
-            };
-            return geometry;
-        }
-
-        function fit(term) {
-            var geometry = proposeGeometry(term);
-            if (geometry) {
-                if (term.rows !== geometry.rows || term.cols !== geometry.cols) {
-                    term._core.renderer.clear();
-                    term.resize(geometry.cols, geometry.rows);
-                }
-            }
-        }
-
         function initTree() {
             $('#assetTree').html("{% trans 'Loading' %}" + '..');
             if (systemUserId) {
@@ -159,12 +124,6 @@
                         enable: true
                     }
                 },
-                async: {
-                    enable: true,
-                    url: url,
-                    autoParam: ["id=key", "name=n", "level=lv"],
-                    type: 'get'
-                 },
                 edit: {
                     enable: true,
                     showRemoveBtn: false,
@@ -254,7 +213,8 @@
             });
             term.open(document.getElementById('term'));
             var msg = "{% trans 'Select the left asset, select the running system user, execute command in batch' %}" + "\r\n";
-            fit(term);
+            window.fit.fit(term);
+            {#fit(term);#}
             term.write(msg);
 
             var scheme = document.location.protocol === "https:" ? "wss" : "ws";
diff --git a/apps/perms/urls/api_urls.py b/apps/perms/urls/api_urls.py
index 6ab19ca5a..5ffa0d14f 100644
--- a/apps/perms/urls/api_urls.py
+++ b/apps/perms/urls/api_urls.py
@@ -62,10 +62,10 @@ asset_permission_urlpatterns = [
     path('user-groups/<uuid:pk>/assets/<uuid:asset_id>/system-users/', api.UserGroupGrantedAssetSystemUsersApi.as_view(), name='user-group-asset-system-users'),
 
     # 用户和资产授权变更
-    path('asset-permissions/<uuid:pk>/user/remove/', api.AssetPermissionRemoveUserApi.as_view(), name='asset-permission-remove-user'),
-    path('asset-permissions/<uuid:pk>/user/add/', api.AssetPermissionAddUserApi.as_view(), name='asset-permission-add-user'),
-    path('asset-permissions/<uuid:pk>/asset/remove/', api.AssetPermissionRemoveAssetApi.as_view(), name='asset-permission-remove-asset'),
-    path('asset-permissions/<uuid:pk>/asset/add/', api.AssetPermissionAddAssetApi.as_view(), name='asset-permission-add-asset'),
+    path('asset-permissions/<uuid:pk>/users/remove/', api.AssetPermissionRemoveUserApi.as_view(), name='asset-permission-remove-user'),
+    path('asset-permissions/<uuid:pk>/users/add/', api.AssetPermissionAddUserApi.as_view(), name='asset-permission-add-user'),
+    path('asset-permissions/<uuid:pk>/assets/remove/', api.AssetPermissionRemoveAssetApi.as_view(), name='asset-permission-remove-asset'),
+    path('asset-permissions/<uuid:pk>/assets/add/', api.AssetPermissionAddAssetApi.as_view(), name='asset-permission-add-asset'),
 
     # 授权规则中授权的资产
     path('asset-permissions/<uuid:pk>/assets/', api.AssetPermissionAssetsApi.as_view(), name='asset-permission-assets'),
@@ -75,7 +75,7 @@ asset_permission_urlpatterns = [
     path('asset-permissions/user/actions/', api.GetUserAssetPermissionActionsApi.as_view(), name='get-user-asset-permission-actions'),
 
     # 刷新缓存
-    path('asset-permissions/user/cache/refresh/', api.RefreshAssetPermissionCacheApi.as_view(), name='refresh-asset-permission-cache'),
+    path('asset-permissions/cache/refresh/', api.RefreshAssetPermissionCacheApi.as_view(), name='refresh-asset-permission-cache'),
 ]
 
 
@@ -99,10 +99,10 @@ remote_app_permission_urlpatterns = [
     path('remote-app-permissions/user/validate/', api.ValidateUserRemoteAppPermissionApi.as_view(), name='validate-user-remote-app-permission'),
 
     # 用户和RemoteApp变更
-    path('remote-app-permissions/<uuid:pk>/user/add/', api.RemoteAppPermissionAddUserApi.as_view(), name='remote-app-permission-add-user'),
-    path('remote-app-permissions/<uuid:pk>/user/remove/', api.RemoteAppPermissionRemoveUserApi.as_view(), name='remote-app-permission-remove-user'),
-    path('remote-app-permissions/<uuid:pk>/remote-app/remove/', api.RemoteAppPermissionRemoveRemoteAppApi.as_view(), name='remote-app-permission-remove-remote-app'),
-    path('remote-app-permissions/<uuid:pk>/remote-app/add/', api.RemoteAppPermissionAddRemoteAppApi.as_view(), name='remote-app-permission-add-remote-app'),
+    path('remote-app-permissions/<uuid:pk>/users/add/', api.RemoteAppPermissionAddUserApi.as_view(), name='remote-app-permission-add-user'),
+    path('remote-app-permissions/<uuid:pk>/users/remove/', api.RemoteAppPermissionRemoveUserApi.as_view(), name='remote-app-permission-remove-user'),
+    path('remote-app-permissions/<uuid:pk>/remote-apps/remove/', api.RemoteAppPermissionRemoveRemoteAppApi.as_view(), name='remote-app-permission-remove-remote-app'),
+    path('remote-app-permissions/<uuid:pk>/remote-apps/add/', api.RemoteAppPermissionAddRemoteAppApi.as_view(), name='remote-app-permission-add-remote-app'),
 ]
 
 old_version_urlpatterns = [

From 87deb18791b2412bec9f724add4f1fe35d91fe64 Mon Sep 17 00:00:00 2001
From: ibuler <ibuler@qq.com>
Date: Tue, 22 Oct 2019 15:53:24 +0800
Subject: [PATCH 08/10] =?UTF-8?q?[Update]=20=E4=BF=AE=E6=94=B9command=20?=
 =?UTF-8?q?=E6=89=B9=E9=87=8F=E6=89=A7=E8=A1=8C=E5=B7=A6=E4=BE=A7=E9=80=89?=
 =?UTF-8?q?=E6=8B=A9=E7=B3=BB=E7=BB=9F=E7=94=A8=E6=88=B7?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 apps/assets/backends/manager.py                      | 2 --
 apps/ops/templates/ops/command_execution_create.html | 5 ++---
 apps/ops/views/command.py                            | 2 +-
 3 files changed, 3 insertions(+), 6 deletions(-)

diff --git a/apps/assets/backends/manager.py b/apps/assets/backends/manager.py
index ac81307df..75b9c38b8 100644
--- a/apps/assets/backends/manager.py
+++ b/apps/assets/backends/manager.py
@@ -67,8 +67,6 @@ class AssetUserManager:
         return AssetUserQuerySet(instances)
 
     def get(self, username, asset, **kwargs):
-        print(username)
-        print(asset)
         instances = self.filter(username, assets=[asset], **kwargs)
         if len(instances) == 1:
             return instances[0]
diff --git a/apps/ops/templates/ops/command_execution_create.html b/apps/ops/templates/ops/command_execution_create.html
index 426cdfda0..9176c608d 100644
--- a/apps/ops/templates/ops/command_execution_create.html
+++ b/apps/ops/templates/ops/command_execution_create.html
@@ -80,9 +80,7 @@
                                 <select class="select2 form-control"
                                         id="system-users-select">
                                     {% for s in system_users %}
-                                        {% if s.protocol == 'ssh' and s.login_mode == 'auto' %}
-                                            <option value="{{ s.id }}">{{ s }}</option>
-                                        {% endif %}
+                                        <option value="{{ s.id }}" {% if s.protocol != 'ssh' or s.login_mode != 'auto' %}disabled{% endif %}>{{ s }}</option>
                                     {% endfor %}
                                 </select>
                                 <button type="button"
@@ -207,6 +205,7 @@
                 lineHeight: 1,
                 rightClickSelectsWord: true,
                 disableStdin: true,
+                cursorBlink: false,
                 theme: {
                     background: '#1f1b1b'
                 }
diff --git a/apps/ops/views/command.py b/apps/ops/views/command.py
index ba00bc617..0824b4b93 100644
--- a/apps/ops/views/command.py
+++ b/apps/ops/views/command.py
@@ -70,7 +70,7 @@ class CommandExecutionStartView(PermissionsMixin, TemplateView):
         user = self.request.user
         with tmp_to_root_org():
             util = AssetPermissionUtilV2(user)
-            system_users = [s for s in util.get_system_users() if s.protocol == 'ssh']
+            system_users = util.get_system_users()
         return system_users
 
     def get_context_data(self, **kwargs):

From 7cf617c3fc73ed8ccfc5c4e94f5221c8bb26a4f9 Mon Sep 17 00:00:00 2001
From: ibuler <ibuler@qq.com>
Date: Tue, 22 Oct 2019 16:09:21 +0800
Subject: [PATCH 09/10] =?UTF-8?q?[Update]=20=E4=BF=AE=E6=94=B9jms=E5=90=AF?=
 =?UTF-8?q?=E5=8A=A8=E8=84=9A=E6=9C=AC=EF=BC=8Cstop=E6=97=B6=E5=A2=9E?=
 =?UTF-8?q?=E5=8A=A0=E8=B6=85=E6=97=B6=E6=A3=80=E6=B5=8B?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 jms | 25 ++++++++++++++++++++-----
 1 file changed, 20 insertions(+), 5 deletions(-)

diff --git a/jms b/jms
index 1affac1d2..6331227fa 100755
--- a/jms
+++ b/jms
@@ -65,6 +65,7 @@ logging.basicConfig(
 EXIT_EVENT = threading.Event()
 LOCK = threading.Lock()
 files_preserve = []
+STOP_TIMEOUT = 10
 
 logger = logging.getLogger()
 
@@ -120,7 +121,7 @@ def check_pid(pid):
 
 
 def get_pid_file_path(s):
-    return os.path.join('/tmp', '{}.pid'.format(s))
+    return os.path.join(TMP_DIR, '{}.pid'.format(s))
 
 
 def get_log_file_path(s):
@@ -433,9 +434,19 @@ def stop_service(srv, sig=15):
         if not is_running(s):
             show_service_status(s)
             continue
-        logging.info("Stop service: {}".format(s))
+        print("Stop service: {}".format(s), end='')
         pid = get_pid(s)
         os.kill(pid, sig)
+        for i in range(STOP_TIMEOUT):
+            if i == STOP_TIMEOUT - 1:
+                print("\033[31m Error\033[0m")
+            if not is_running(s):
+                print("\033[32m Ok\033[0m")
+                break
+            else:
+                time.sleep(1)
+                continue
+
         with LOCK:
             processes.pop(s, None)
 
@@ -472,9 +483,9 @@ def show_service_status(s):
     for ns in services_set:
         if is_running(ns):
             pid = get_pid(ns)
-            logging.info("{} is running: {}".format(ns, pid))
+            print("{} is running: {}".format(ns, pid))
         else:
-            logging.info("{} is stopped".format(ns))
+            print("{} is stopped".format(ns))
 
 
 if __name__ == '__main__':
@@ -499,6 +510,7 @@ if __name__ == '__main__':
     )
     parser.add_argument('-d', '--daemon', nargs="?", const=1)
     parser.add_argument('-w', '--worker', type=int, nargs="?", const=4)
+    parser.add_argument('-f', '--force', nargs="?", const=1)
     args = parser.parse_args()
     if args.daemon:
         DAEMON = True
@@ -513,7 +525,10 @@ if __name__ == '__main__':
         start_services_and_watch(srv)
         os._exit(0)
     elif action == "stop":
-        stop_service(srv)
+        if args.force:
+            stop_service_force(srv)
+        else:
+            stop_service(srv)
     elif action == "restart":
         DAEMON = True
         stop_service(srv)

From a33d5cc53b2fad3fb6fd4fa660e89b4629d79da6 Mon Sep 17 00:00:00 2001
From: ibuler <ibuler@qq.com>
Date: Tue, 22 Oct 2019 17:21:54 +0800
Subject: [PATCH 10/10] =?UTF-8?q?[Update]=20=E4=BF=AE=E6=94=B9=E8=BF=94?=
 =?UTF-8?q?=E5=9B=9Easset=20tree=E5=B8=A6=E4=B8=8A=E7=BB=84=E7=BB=87?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 apps/perms/utils/asset_permission.py | 1 +
 1 file changed, 1 insertion(+)

diff --git a/apps/perms/utils/asset_permission.py b/apps/perms/utils/asset_permission.py
index 84da4e337..f71f83663 100644
--- a/apps/perms/utils/asset_permission.py
+++ b/apps/perms/utils/asset_permission.py
@@ -490,6 +490,7 @@ class ParserNode:
                     'ip': asset.ip,
                     'protocols': asset.protocols_as_list,
                     'platform': asset.platform,
+                    "org_name": asset.org_name,
                 },
             }
         }