├── .gitignore
├── README.md
└── src
    ├── op
        ├── op
        │   ├── __init__.py
        │   ├── certs
        │   │   ├── localhost.crt
        │   │   └── localhost.key
        │   ├── config.py.example
        │   ├── keys
        │   │   ├── cert.pem
        │   │   └── key.pem
        │   └── op.py
        ├── requirements.txt
        └── templates
        │   ├── consent.mako
        │   ├── list_access_tokens.mako
        │   └── login.mako
    ├── pam_module
        └── pam_oidc_authz.c
    ├── service_provider
        ├── __init__.py
        ├── certs
        │   ├── server.crt
        │   └── server.key
        ├── conf.py.example
        ├── database.py
        ├── htdocs
        │   ├── access_token.mako
        │   ├── opchoice.mako
        │   ├── operror.mako
        │   └── rp_session_iframe.mako
        ├── oidc.py
        ├── requirements.txt
        ├── service_provider.py
        └── static
        │   ├── bootstrap
        │       ├── css
        │       │   ├── bootstrap-theme.css
        │       │   ├── bootstrap-theme.min.css
        │       │   ├── bootstrap.css
        │       │   └── bootstrap.min.css
        │       ├── fonts
        │       │   ├── glyphicons-halflings-regular.eot
        │       │   ├── glyphicons-halflings-regular.svg
        │       │   ├── glyphicons-halflings-regular.ttf
        │       │   └── glyphicons-halflings-regular.woff
        │       └── js
        │       │   ├── bootstrap.js
        │       │   └── bootstrap.min.js
        │   ├── jquery.min.1.9.1.js
        │   ├── robots.txt
        │   └── style.css
    ├── test_app
        └── test_app.c
    └── test_application_login_service
        ├── login_server.py
        └── templates
            └── login_page.mako


/.gitignore:
--------------------------------------------------------------------------------
1 | .idea
2 | *.pyc
3 | *config.py
4 | *conf.py
5 | client_db.db
6 | *jwks.json
7 | 


--------------------------------------------------------------------------------
/README.md:
--------------------------------------------------------------------------------
  1 | # Implementation of OpenID Connect Access Tokens as per client passwords.
  2 | 
  3 | This repository contains a proof-of-concept implementation of
  4 | https://tools.ietf.org/html/draft-sakimura-oidc-extension-nonweb-01.
  5 | 
  6 | 
  7 | ## OpenID Connect Provider
  8 | The implementation of a provider with support for non-web access tokens can
  9 | be found in `src/op`. It has the following features:
 10 | 
 11 | * Support for "auth scope values" (request with scope value starting with
 12 |   "auth_" will in long-lived access tokens).
 13 | * The end user can name access tokens as part of the authentication flow.
 14 | * An authenticated user can revoke access tokens (see below).
 15 | * Support for dynamic registration and provider configuration information.
 16 | 
 17 | ### Setup
 18 | 1. Install dependencies:
 19 |         pip install -r src/op/requirements.txt
 20 | 1. Configure the provider:
 21 |   1. Copy the file `src/op/op/config.py.example` to
 22 | `src/op/op/config.py`
 23 |   1. Update the base url and paths to SSL certs, encryption/signing keys, etc.
 24 | 1. Start the provider:
 25 |         python op.py -p <port> config
 26 | 
 27 | ### Revoking access tokens
 28 | A list of all valid access tokens can be viewed at the endpoint `/my_tokens`
 29 | of the provider. From that page each individual access token can be revoked.
 30 | 
 31 | 
 32 | ## OpenID Connect Relying Party
 33 | The implementation of a relying party (RP) can be found in
 34 | `src/service_provider`. This RP registers with the provider dynamically and uses
 35 | the "Authorization Code Flow" and makes a token request to obtain the access
 36 | token.
 37 | 
 38 | ### Setup
 39 | 1. Install dependencies:
 40 |         pip install -r src/service_provider/requirements.txt
 41 | 1. Configure the client:
 42 |   1. Copy the file `src/service_provider/conf.py.example` to
 43 |      `src/service_provider/conf.py`
 44 |   1. Update the paths to SSL certs and the port if necessary.
 45 |   1. Update the `"srv_discovery_url"` of the `"non-web-op"` in `CLIENTS` to
 46 |      point to the base url of the OpenID Connect Provider described above.
 47 | 1. Start the service_provider
 48 |         python service_provider.py conf
 49 | 
 50 | ## PAM module
 51 | 
 52 | A PAM module to verify an access token can be found in `src/pam_module`.
 53 | It sends (using `libcurl`) the access token to the RP
 54 | (described above) for authorization.
 55 | 
 56 | ### Setup in Ubuntu
 57 | In this section it is described how to set up the PAM module
 58 | 
 59 | #### Install dependencies
 60 |     apt-get install libpam0g-dev libcurl4-openssl-dev
 61 | #### Compile
 62 |     gcc -fPIC -fno-stack-protector -c pam_oidc_authz.c
 63 | #### Create shared library for PAM
 64 |     mkdir /lib/security
 65 |     ld -x --shared -o /lib/security/pam_oidc_authz.so pam_oidc_authz.o `curl-config --libs`
 66 | 
 67 | 
 68 | ## Login server
 69 | The login server (located in `src/test_application_login_service`) can be used to
 70 | simulate a login service which should be put in front of the RP to ensure only
 71 | authorized users can fetch an access token.
 72 | 
 73 | For simplicity this login service does NOT authenticate users, it allows any
 74 | user to select any username before entering the RP.
 75 | 
 76 | ### Setup
 77 | To start the login server, run the python script
 78 | `src/test_application_login_service/login_server.py`.
 79 | 
 80 | The script requires one parameter: the base url to the RP.
 81 | The login service will use a HTTP GET request in order to send the username of
 82 | the user to the RP.
 83 | 
 84 | It is possible to specify which port the login server should use, by using the
 85 | flag `-p` (if it is not specified it defaults to port 80).
 86 | 
 87 | Example:
 88 | 
 89 |     python login_server.py -p 8000 https://localhost:8666/
 90 | 
 91 | 
 92 | ## Test application
 93 | A small application for testing the flow can be found in `src/test_app`.
 94 | 
 95 | ### PAM configuration in Ubuntu
 96 | Add the following to the file `/etc/pam.d/test_app`:
 97 | 
 98 |     auth requisite pam_oidc_authz.so <service provider A.T.V endpoint> <verify_ssl {0, 1}>
 99 |     account sufficient pam_permit.so
100 | 
101 | <service provider V.A.T endpoint>:
102 | This should be the url to the access token verification endpoint e.g. https://localhost:8666/verify_access_token
103 | 
104 | ### Setup
105 | How to use the test application in order test the PAM module.
106 | 
107 | #### Compile
108 |     gcc -o test_app test_app.c -lpam -lpam_misc
109 | #### Run
110 |     ./test_app <username> <path to file containing access token>
111 | 
112 | 
113 | ## Testing it all
114 | 
115 | ### Docker setup
116 | The OP, RP and login server can be automatically started in a Docker container.
117 | See the Dockerfile, with an example Docker Compose file
118 | https://github.com/its-dirg/docker/tree/master/non-web-oidc.
119 | 
120 | After building the image, start a Docker container:
121 |     
122 |     docker run -p 8080:8080 -p 8090:8090 -p 9000:9000 -e HOST_IP=<host IP> <image_name>
123 |     
124 | The exposed ports are 8080 for the OP, 8090 for the RP and 9000 for the
125 | example login server. And the environment variable `HOST_IP` must be the IP
126 | address for the host computer (outside Docker).
127 | 
128 | To test the flow and get an access token, browse to http://<host IP>:9000 and
129 | follow the guide below from step 4. 
130 | 
131 | ### Manual setup
132 | 1. Start the provider.
133 | 2. Start the RP.
134 | 3. Start the login server and browse to it.
135 | 4. Enter a username and submit.
136 | 5. Click the blue button "Start" at the RP to use the default non-web provider.
137 | 6. Login at the provider using any of user-password pairs defined in `PASSWD`
138 |   in `src/op/op/conf.py`, e.g. user "upper" with password "crust".
139 | 7. Enter a new nickname for the access token, e.g. "test1".
140 | 8. Copy the displayed access token to clipboard.
141 | 9. Paste the access token in a file.
142 | 10. Run the test application passing the username selected in step 4. and
143 |   filename created in step 9.
144 | 11. If the access token is valid, the test application will print
145 |   "Authenticated" as the last line of output.
146 | 12. Try revoking the token by browsing to the `/my_tokens` endpoint at the
147 |   provider.
148 | 13. Run the test application again with the same access token in the file.
149 | 14. If the token was properly revoked the test application will print
150 |   "Not Authenticated"
151 | 


--------------------------------------------------------------------------------
/src/op/op/__init__.py:
--------------------------------------------------------------------------------
1 | __author__ = 'regu0004'
2 | 


--------------------------------------------------------------------------------
/src/op/op/certs/localhost.crt:
--------------------------------------------------------------------------------
 1 | -----BEGIN CERTIFICATE-----
 2 | MIICGTCCAYICCQCIs8fF+AnxUzANBgkqhkiG9w0BAQUFADBRMQswCQYDVQQGEwJT
 3 | RTETMBEGA1UECBMKU29tZS1TdGF0ZTEMMAoGA1UEChMDVW1VMQwwCgYDVQQLEwNJ
 4 | VFMxETAPBgNVBAMTCHJvaGUwMDAyMB4XDTExMDkwNzA4MjMwOFoXDTEyMDkwNjA4
 5 | MjMwOFowUTELMAkGA1UEBhMCU0UxEzARBgNVBAgTClNvbWUtU3RhdGUxDDAKBgNV
 6 | BAoTA1VtVTEMMAoGA1UECxMDSVRTMREwDwYDVQQDEwhyb2hlMDAwMjCBnzANBgkq
 7 | hkiG9w0BAQEFAAOBjQAwgYkCgYEA5zbNbHIYIkGGJ3RGdRKkYmF4gOorv5eDuUKT
 8 | Vtuu3VvxrpOWvwnFV+NY0LgqkQSMMyVzodJE3SUuwQTUHPXXY5784vnkFqzPRx6b
 9 | HgPxKz7XfwQjEBTafQTMmOeYI8wFIOIHY5i0RWR+gxDbh/D5TXuUqScOOqR47vSp
10 | IbUH+ncCAwEAATANBgkqhkiG9w0BAQUFAAOBgQDP9PE53utRqocZpFRxrhL+4vcI
11 | vlQd3XonE7vMJwdl9FUW7QRMon19dpYKQ6LTCOBA4ZCwh2z/Om2X97zogMLKFPcE
12 | LVqxzBVlrzuqAgOErEalYv9pCBzoFHGUHP6kTAUOCsoO9ZdQWgA6YkK2hYRSlLNX
13 | Z0wHIHGaHe5xnFFpyQ==
14 | -----END CERTIFICATE-----
15 | 


--------------------------------------------------------------------------------
/src/op/op/certs/localhost.key:
--------------------------------------------------------------------------------
 1 | -----BEGIN RSA PRIVATE KEY-----
 2 | MIICXAIBAAKBgQDnNs1schgiQYYndEZ1EqRiYXiA6iu/l4O5QpNW267dW/Guk5a/
 3 | CcVX41jQuCqRBIwzJXOh0kTdJS7BBNQc9ddjnvzi+eQWrM9HHpseA/ErPtd/BCMQ
 4 | FNp9BMyY55gjzAUg4gdjmLRFZH6DENuH8PlNe5SpJw46pHju9KkhtQf6dwIDAQAB
 5 | AoGAKuSxy1KHQ6OgPaWGhKWGtXGbp17J6usy1qWRK+XpVMt/1IEw0BQB9kII8f+Y
 6 | dfq//6UNBJI7kEMbn1dD+nNpF4ncO9QWHE5oqacHgaZOl6+MF3ePy8aXkADhwiel
 7 | L7CtZjhwbcjGt5PI6AIcpFfmBAbu5Pf4gidr6bR+MoJGlhECQQDzfMaRqruJkqsz
 8 | Z5b9boIr08orx1xPoHTmE5g0ET9+UJy/BBgx7DNv+AQhJ2UC1ZaKcgqwetOwJhQs
 9 | u8Cbrct9AkEA8xiQSwqlM7ltpNl6L2VvSxzTd897it+FJElXbD6u80RvzMuo3Xw3
10 | +M+F0kDobM4vsyBuZRw418/yOpnOv8x4AwJATj5WgRDgWwEqysYLGz2bzwGsAg16
11 | eIwThKvfSTwRr0GwXSGvtLs2fFCy4wSJzTNdwPeMv9F4nS5fZVCgQGbE8QJAMZBG
12 | iyZGfH9H/Z5hrRwvTs83xmvFMpFUIgvaCTXWkb7YVJcJfO8AsngNPssBGH4Jd6ob
13 | F/5jEI1TQ+NsJerYZQJBAJdqDlnPQyqek4kdBvwh2hYo9EwOrgOchmruMOeP5lE6
14 | 2TLIyjYC3uVMPJj+ESayVcAMrgj4Enk4qh/WKVeMJ7c=
15 | -----END RSA PRIVATE KEY-----
16 | 


--------------------------------------------------------------------------------
/src/op/op/config.py.example:
--------------------------------------------------------------------------------
 1 | # -*- coding: utf-8 -*-
 2 | 
 3 | keys = [
 4 |     {"type": "RSA", "key": "keys/key.pem", "use": ["enc", "sig"]},
 5 |     {"type": "EC", "crv": "P-256", "use": ["sig"]},
 6 |     {"type": "EC", "crv": "P-256", "use": ["enc"]}
 7 | ]
 8 | 
 9 | SYM_KEY = "SoLittleTime,Got"
10 | 
11 | SERVER_CERT = "certs/localhost.crt"
12 | SERVER_KEY = "certs/localhost.key"
13 | CERT_CHAIN = None
14 | 
15 | STATIC_DIR = "/tmp"
16 | 
17 | PASSWD = {
18 |     "diana": "krall",
19 |     "babs": "howes",
20 |     "upper": "crust"
21 | }
22 | 
23 | USERDB = {
24 |     "diana": {
25 |         "sub": "dikr0001",
26 |         "name": "Diana Krall",
27 |         "given_name": "Diana",
28 |         "family_name": "Krall",
29 |         "nickname": "Dina",
30 |         "email": "diana@example.org",
31 |         "email_verified": False,
32 |         "phone_number": "+46 90 7865000",
33 |         "address": {
34 |             "street_address": "Umeå Universitet",
35 |             "locality": "Umeå",
36 |             "postal_code": "SE-90187",
37 |             "country": "Sweden"
38 |         },
39 |     },
40 |     "babs": {
41 |         "sub": "babs0001",
42 |         "name": "Barbara J Jensen",
43 |         "given_name": "Barbara",
44 |         "family_name": "Jensen",
45 |         "nickname": "babs",
46 |         "email": "babs@example.com",
47 |         "email_verified": True,
48 |         "address": {
49 |             "street_address": "100 Universal City Plaza",
50 |             "locality": "Hollywood",
51 |             "region": "CA",
52 |             "postal_code": "91608",
53 |             "country": "USA",
54 |         },
55 |     },
56 |     "upper": {
57 |         "sub": "uppe0001",
58 |         "name": "Upper Crust",
59 |         "given_name": "Upper",
60 |         "family_name": "Crust",
61 |         "email": "uc@example.com",
62 |         "email_verified": True,
63 |     }
64 | }


--------------------------------------------------------------------------------
/src/op/op/keys/cert.pem:
--------------------------------------------------------------------------------
 1 | -----BEGIN CERTIFICATE-----
 2 | MIIC3zCCAcegAwIBAgIBATANBgkqhkiG9w0BAQUFADA0MRgwFgYDVQQDEw9UaGUg
 3 | Y29kZSB0ZXN0ZXIxGDAWBgNVBAoTD1VtZWEgVW5pdmVyc2l0eTAeFw0xMjA4MjEx
 4 | MTAyMjFaFw0xMzA4MjExMTAyMjFaMDIxCzAJBgNVBAYTAlNFMSMwIQYDVQQDExpP
 5 | cGVuSUQgQ29ubmVjdCBUZXN0IFNlcnZlcjCCASIwDQYJKoZIhvcNAQEBBQADggEP
 6 | ADCCAQoCggEBANRAq0lVRsRw4wpvoC3RqEzwk3iIE0b4p9HBPTOrPxpA9LWt08ug
 7 | wpbvBogZpfj0H0LUsmuRM7/BLlF4RYTQqUft/7zMFI2Cwcx+cmwAfzQUS/DCdTO1
 8 | lM5vlkp5dYXWDKJV9cctnMtlJubGiLbmzDjYYVRvoRQLMsvYgg1/hVfGp6zj6Qgb
 9 | mCtQdAWgUmnzA7rN0kfsavE+i4E3pcK97KyZukOgNgM3QbApJvlnClud+ApUWzGH
10 | zGiUJQWKZrZ0Lf5PHLVFl9ZP5CACexkeVof++eecAnFSW56HOIjYD7NSsjX5h79k
11 | YhK9pX9AZsaZM1BpzUDWjlagdfw9coLDTAMCAwEAATANBgkqhkiG9w0BAQUFAAOC
12 | AQEAIeLXKI+XukIcWHY67N9NqdWWhBi8HIygbvt6bNOlM9dFIBvc68LQIZSrJd/6
13 | AKs07N+mY9rewYFcORrgI6767Gd/vzu+HhEMpFgJnipPjBq6XuwzLSOPRHIOGMcx
14 | gLmHa/ALDhQq+ma4eghpxjYM4hY8VOXPRLzGE+WqOFc/PTUIxDRT5yk0ct+XlCdC
15 | mCRA9BnJfYG2ABsf2GtfNK2aXMIbCC/n9c/NNkffc2aXGImalj18BZzYW8TWNQt9
16 | Ypx4GMUpDZu8CLaddGHoAxZgar6+BLSwO8FWB5XiFLOH/OEai9o+LZZbSebL4fyl
17 | yST8CMkOK8hBl1tHmEWbknlH5A==
18 | -----END CERTIFICATE-----
19 | 


--------------------------------------------------------------------------------
/src/op/op/keys/key.pem:
--------------------------------------------------------------------------------
 1 | -----BEGIN RSA PRIVATE KEY-----
 2 | MIIEpAIBAAKCAQEA1ECrSVVGxHDjCm+gLdGoTPCTeIgTRvin0cE9M6s/GkD0ta3T
 3 | y6DClu8GiBml+PQfQtSya5Ezv8EuUXhFhNCpR+3/vMwUjYLBzH5ybAB/NBRL8MJ1
 4 | M7WUzm+WSnl1hdYMolX1xy2cy2Um5saItubMONhhVG+hFAsyy9iCDX+FV8anrOPp
 5 | CBuYK1B0BaBSafMDus3SR+xq8T6LgTelwr3srJm6Q6A2AzdBsCkm+WcKW534ClRb
 6 | MYfMaJQlBYpmtnQt/k8ctUWX1k/kIAJ7GR5Wh/7555wCcVJbnoc4iNgPs1KyNfmH
 7 | v2RiEr2lf0BmxpkzUGnNQNaOVqB1/D1ygsNMAwIDAQABAoIBAQDUMOqMX5Jl5K01
 8 | y66I3+avNHtZrkAHXaL4UYVL2FE3f+SklGj+U3L1zXPsMCf7IKL3/wd3/iuL8ibK
 9 | D8EALFJvtIFMT4HkjuoL9AWT71M7z2a0BNOCpG9liazoO1DAQeNTjzgsrW7o7/Da
10 | GXSn1UgpNDjpXsfb7+4SWBp8QBYgTok/dx/nZyewZsVtkCsnwrm26Y2k8nhynLm1
11 | nGkQBbRKweQJ5O3PrsrZhRO9OXJ10WK/lYHVqRnu4dam8iP8JHKz5CQN/O7x0HI5
12 | VHHAl0Az4+YZe8wrdNhgtkkOhGxwOtIK5Q3eV8st51YBpWbMiDtQ53ghisWtyNzg
13 | EyphOksxAoGBAO1bTWHsuo6srY4cEJJlJ/C7W237iUM2p9MkeOwcewSXtgY19jAb
14 | IalYzn+yIHLqMyJ1H4cA1sBXBooNvkjVd+7niBbE8du2LyHf4avhNHN2tgKIOjpj
15 | GCsitLEqhyQmUUlYC3z8tQbh99b7fqn2kBDnhdSWPojEx84eXQ71IhMPAoGBAOTs
16 | lQ2iT3cqyore02YOieDwSg7n4flAPPG6cTGGQeOyHpNllTy9U/wyEBrHGGSCkjHI
17 | uDICHtYxyBmL6b0H5IyT4vn1Wxm19ecy8zbuK7Lmwd/iWRfKlGr+YQuez/mHVcCG
18 | YMoQvS6j8WOrQxt2wdOMNatgJeJSz66TaRy2QWfNAoGBAOmTWNJN8MSon15itdgq
19 | 3aQj6/SOfOR866h3ktvfpxu85C62eZ+bg4OwVf4J367WVB3LnovvQmYi/ddrcN8h
20 | 2xVqGV020D+DyFwQgnbvdvtNTg2t24dLryP70k8qZ7UmVAXWM+/6i3bLdmbENUCy
21 | 19Ea1XN/quhSpcFr1e37Q133AoGAD5GLXX8BWoBdf+5BgDpS5CpTTwo0EwhsXKAq
22 | XIzd5EdTzwBkktnpYUhiUf/iR8udd6dH55a/VB/UlPAv+DwWLf1MvWUTSf9W9t8/
23 | LSgrbqJE4x34oyaSy2f7X5fwWu76RPqekH9s7kQWAYo/KRn9eo6Zg8spKGgrWZsK
24 | 1foLHq0CgYBJRjKEY79aNuKCJZw60QPpXodJ65RJufXPz9MgDdoxUOtno8eYPfep
25 | KWWyhJsQXhMJNUMZGvQXRXaaZ3ZZp1e1q18CLh1TqbInC1ODW3L/ZAWCpT9ihcdA
26 | Owj1RL042er59qut/nivipmB5fn1hTbRDLq9rng0fsNU9XlrETbUfg==
27 | -----END RSA PRIVATE KEY-----
28 | 


--------------------------------------------------------------------------------
/src/op/op/op.py:
--------------------------------------------------------------------------------
  1 | import argparse
  2 | from functools import partial
  3 | import importlib
  4 | import json
  5 | import os
  6 | import shelve
  7 | import urlparse
  8 | import sys
  9 | 
 10 | from cherrypy import wsgiserver
 11 | import cherrypy
 12 | from cherrypy.wsgiserver import ssl_pyopenssl
 13 | from mako.lookup import TemplateLookup
 14 | from oic.oic.non_web_provider import NonWebProvider, MakoRenderer
 15 | from oic.oic.provider import AuthorizationEndpoint, TokenEndpoint, \
 16 |     UserinfoEndpoint, RegistrationEndpoint, EndSessionEndpoint
 17 | from oic.utils.authn.authn_context import AuthnBroker
 18 | from oic.utils.authn.client import verify_client
 19 | from oic.utils.authn.user import UsernamePasswordMako
 20 | from oic.utils.authz import AuthzHandling
 21 | from oic.utils.http_util import wsgi_wrapper, ServiceError, BadRequest, \
 22 |     Response, \
 23 |     get_or_post
 24 | from oic.utils.keyio import keyjar_init
 25 | from oic.utils.sdb import SessionDB
 26 | from oic.utils.userinfo import UserInfo
 27 | from oic.utils.webfinger import OIC_ISSUER, WebFinger
 28 | 
 29 | 
 30 | class OICProviderMiddleware(object):
 31 |     def __init__(self, provider, app):
 32 |         self.provider = provider
 33 |         self.app = app
 34 | 
 35 |     def __call__(self, environ, start_response):
 36 |         environ["oic.oas"] = self.provider
 37 |         return self.app(environ, start_response)
 38 | 
 39 | 
 40 | def token(environ, start_response):
 41 |     _oas = environ["oic.oas"]
 42 |     return wsgi_wrapper(environ, start_response, _oas.token_endpoint)
 43 | 
 44 | 
 45 | def authorization(environ, start_response):
 46 |     _oas = environ["oic.oas"]
 47 |     return wsgi_wrapper(environ, start_response, _oas.authorization_endpoint)
 48 | 
 49 | 
 50 | def userinfo(environ, start_response):
 51 |     _oas = environ["oic.oas"]
 52 |     return wsgi_wrapper(environ, start_response, _oas.userinfo_endpoint)
 53 | 
 54 | 
 55 | def op_info(environ, start_response):
 56 |     _oas = environ["oic.oas"]
 57 |     return wsgi_wrapper(environ, start_response, _oas.providerinfo_endpoint)
 58 | 
 59 | 
 60 | def registration(environ, start_response):
 61 |     _oas = environ["oic.oas"]
 62 | 
 63 |     if environ["REQUEST_METHOD"] == "POST":
 64 |         return wsgi_wrapper(environ, start_response, _oas.registration_endpoint)
 65 |     elif environ["REQUEST_METHOD"] == "GET":
 66 |         return wsgi_wrapper(environ, start_response, _oas.read_registration)
 67 |     else:
 68 |         resp = ServiceError("Method not supported")
 69 |         return resp(environ, start_response)
 70 | 
 71 | 
 72 | def endsession(environ, start_response):
 73 |     _oas = environ["oic.oas"]
 74 | 
 75 |     return wsgi_wrapper(environ, start_response, _oas.endsession_endpoint)
 76 | 
 77 | 
 78 | def webfinger(environ, start_response):
 79 |     query = urlparse.parse_qs(environ["QUERY_STRING"])
 80 |     try:
 81 |         assert query["rel"] == [OIC_ISSUER]
 82 |         resource = query["resource"][0]
 83 |     except KeyError:
 84 |         resp = BadRequest("Missing parameter in request")
 85 |     else:
 86 |         wf = WebFinger()
 87 |         resp = Response(wf.response(subject=resource, base=OAS.baseurl))
 88 |     return resp(environ, start_response)
 89 | 
 90 | 
 91 | def consent(environ, start_response):
 92 |     _oas = environ["oic.oas"]
 93 | 
 94 |     params_str = get_or_post(environ)
 95 |     params = dict(urlparse.parse_qsl(params_str))
 96 | 
 97 |     return _oas.consent_endpoint(**params)(environ, start_response)
 98 | 
 99 | 
100 | def list_access_tokens(environ, start_response):
101 |     _oas = environ["oic.oas"]
102 |     return wsgi_wrapper(environ, start_response,
103 |                         _oas.list_access_tokens_endpoint)
104 | 
105 | 
106 | def revoke_access_token(environ, start_response):
107 |     _oas = environ["oic.oas"]
108 | 
109 |     params_str = get_or_post(environ)
110 |     params = dict(urlparse.parse_qsl(params_str))
111 | 
112 |     return _oas.revoke_access_token_endpoint(**params)(environ, start_response)
113 | 
114 | 
115 | ENDPOINTS = [
116 |     AuthorizationEndpoint(authorization),
117 |     TokenEndpoint(token),
118 |     UserinfoEndpoint(userinfo),
119 |     RegistrationEndpoint(registration),
120 |     EndSessionEndpoint(endsession)
121 | ]
122 | 
123 | LOOKUP = TemplateLookup(directories=["../templates"], input_encoding='utf-8',
124 |                         output_encoding='utf-8')
125 | 
126 | if __name__ == '__main__':
127 |     parser = argparse.ArgumentParser()
128 |     parser.add_argument('-p', dest='port', default=80, type=int)
129 |     parser.add_argument("-b", required=True, dest="base",
130 |                         help="base url of the provider")
131 |     parser.add_argument(dest="config")
132 |     args = parser.parse_args()
133 | 
134 |     # Client data base
135 |     cdb = shelve.Shelf({})
136 | 
137 |     sys.path.insert(0, ".")
138 |     config = importlib.import_module(args.config)
139 |     baseurl = "{base}:{port}".format(base=args.base.rstrip("/"), port=args.port)
140 | 
141 |     ac = AuthnBroker()
142 |     authn = UsernamePasswordMako(None, "login.mako", LOOKUP, config.PASSWD,
143 |                                  "%s/authorization" % baseurl)
144 |     ac.add("UsernamePassword", authn)
145 | 
146 |     # dealing with authorization
147 |     authz = AuthzHandling()
148 | 
149 |     # Consent and list tokens page
150 |     renderer = MakoRenderer(LOOKUP)
151 |     consent_page_handler = partial(renderer, "consent.mako",
152 |                                    form_action="/consent_ok")
153 |     list_tokens_page_handler = partial(renderer, "list_access_tokens.mako")
154 | 
155 |     OAS = NonWebProvider(baseurl, SessionDB(baseurl), cdb, ac,
156 |                          None, authz, verify_client, config.SYM_KEY,
157 |                          consent_page_handler, list_tokens_page_handler)
158 | 
159 |     for authn in ac:
160 |         authn.srv = OAS
161 | 
162 |     # User info is a simple dictionary in this case statically defined in
163 |     # the configuration file
164 |     OAS.userinfo = UserInfo(config.USERDB)
165 |     OAS.endpoints = ENDPOINTS
166 |     OAS.baseurl = baseurl
167 | 
168 |     try:
169 |         jwks = keyjar_init(OAS, config.keys, kid_template="op%d")
170 |     except Exception, err:
171 |         OAS.key_setup("static", sig={"format": "jwk", "alg": "rsa"})
172 |     else:
173 |         new_name = "jwks.json"
174 |         with open(os.path.join(config.STATIC_DIR, new_name), "w") as f:
175 |             json.dump(jwks, f)
176 |         OAS.jwks_uri.append("%s/static/%s" % (OAS.baseurl, new_name))
177 | 
178 |     # Static file handling
179 |     static_config = {
180 |         "/static": {
181 |             "tools.staticdir.on": True,
182 |             "tools.staticdir.dir": config.STATIC_DIR
183 |         }
184 |     }
185 |     static_handler = cherrypy.tree.mount(None, "/", config=static_config)
186 | 
187 |     # Setup endpoints
188 |     all_endpoints = [
189 |         ("/.well-known/openid-configuration",
190 |          OICProviderMiddleware(OAS, op_info)),
191 |         ("/.well-known/webfinger", OICProviderMiddleware(OAS, webfinger)),
192 |         ("/verify",
193 |          lambda environ, start_response: wsgi_wrapper(environ, start_response,
194 |                                                       authn.verify)),
195 |         ("/my_tokens",
196 |          OICProviderMiddleware(OAS, list_access_tokens)),
197 |         ("/consent_ok", OICProviderMiddleware(OAS, consent)),
198 |         ("/revoke_token", OICProviderMiddleware(OAS, revoke_access_token)),
199 |         ("/static", static_handler)
200 |     ]
201 |     for ep in ENDPOINTS:
202 |         all_endpoints.append(("/%s" % ep.etype, OICProviderMiddleware(OAS, ep)))
203 | 
204 |     d = wsgiserver.WSGIPathInfoDispatcher(all_endpoints)
205 |     SRV = wsgiserver.CherryPyWSGIServer(('0.0.0.0', args.port), d)
206 | 
207 |     https = ""
208 |     if baseurl.startswith("https"):
209 |         https = "using HTTPS"
210 |     SRV.ssl_adapter = ssl_pyopenssl.pyOpenSSLAdapter(
211 |         config.SERVER_CERT, config.SERVER_KEY, config.CERT_CHAIN)
212 | 
213 |     print "OC server starting listening on port:%s %s" % (args.port, https)
214 |     try:
215 |         SRV.start()
216 |     except KeyboardInterrupt:
217 |         SRV.stop()


--------------------------------------------------------------------------------
/src/op/requirements.txt:
--------------------------------------------------------------------------------
1 | git+https://github.com/its-dirg/pyoidc@non-web
2 | cherrypy==3.2.4


--------------------------------------------------------------------------------
/src/op/templates/consent.mako:
--------------------------------------------------------------------------------
 1 | <!doctype html>
 2 | 
 3 | <html lang="en">
 4 | <head>
 5 |     <meta charset="utf-8">
 6 |     <title>Name your access token</title>
 7 | </head>
 8 | 
 9 | <div>
10 |     <h1>Name your access token</h1>
11 |     By naming your access token you authorize <em>${client}</em> to use it.
12 |     Make sure the nickname for your access token is unique!
13 | </div>
14 | 
15 | <form action="${form_action}" method="get">
16 |     <input type="hidden" name="sid" value="${sid}">
17 | 
18 |     <label for="nickname">Nickname</label>
19 |     <input type="text" id="nickname" name="access_token_nickname" autofocus
20 |            required>
21 | 
22 |     <input type="submit" value="Authorize">
23 | </form>


--------------------------------------------------------------------------------
/src/op/templates/list_access_tokens.mako:
--------------------------------------------------------------------------------
 1 | <!DOCTYPE html>
 2 | <html>
 3 | <head lang="en">
 4 |     <meta charset="UTF-8">
 5 |     <title></title>
 6 | </head>
 7 | <body>
 8 | <ul>
 9 |     % for nick in access_tokens:
10 |         <li>${nick}:
11 |             <a href="/revoke_token?access_token=${access_tokens[nick] | u}">Revoke</a>
12 |             <pre>${access_tokens[nick]}</pre>
13 |         </li>
14 |     % endfor
15 | 
16 | </ul>
17 | </body>
18 | </html>


--------------------------------------------------------------------------------
/src/op/templates/login.mako:
--------------------------------------------------------------------------------
 1 | <!doctype html>
 2 | 
 3 | <html lang="en">
 4 | <head>
 5 |     <meta charset="utf-8">
 6 |     <title>Please login</title>
 7 | 
 8 |     <style type="text/css">
 9 |         .container {
10 |             width: 100px;
11 |             clear: both;
12 |         }
13 | 
14 |         .container input {
15 |             width: 100%;
16 |             clear: right;
17 |         }
18 | 
19 |     </style>
20 | </head>
21 | 
22 | <body>
23 | <div>
24 |     <h1>${title}</h1>
25 | </div>
26 | 
27 | <div class="container">
28 |     <form action="${action}" method="post" class="login form">
29 |         <input type="hidden" name="query" value="${query}"/>
30 |         <input type="hidden" name="acr_values" value="${acr}"/>
31 | 
32 |         <p>
33 |             <label for="login">${login_title}</label>
34 |             <input type="text" id="login" name="login" value="${login}"
35 |                    autofocus>
36 |         </p>
37 | 
38 |         <p>
39 |             <label for="password">${passwd_title}</label>
40 |             <input type="password" id="password" name="password"
41 |                    value="${password}">
42 |         </p>
43 | 
44 |         <input type="submit" value="${submit_text}">
45 |     </form>
46 | </div>
47 | 
48 | 


--------------------------------------------------------------------------------
/src/pam_module/pam_oidc_authz.c:
--------------------------------------------------------------------------------
  1 | /*
  2 |  * Requires 'libpam0g-dev' and 'libcurl4-openssl-dev' on Ubuntu.
  3 |  *
  4 |  * Setup:
  5 |  *  mkdir /lib/security
  6 |  *  gcc -fPIC -fno-stack-protector -c pam_oidc_authz.c
  7 |  *  ld -x --shared -o /lib/security/pam_oidc_authz.so pam_oidc_authz.o `curl-config --libs`
  8 |  */
  9 | 
 10 | #include <stdio.h>
 11 | #include <stdlib.h>
 12 | #include <string.h>
 13 | #include <security/pam_appl.h>
 14 | #include <security/pam_modules.h>
 15 | #include <security/pam_ext.h>
 16 | 
 17 | #include <curl/curl.h>
 18 | 
 19 | /*
 20 |  * Callback for libcurl to handle data.
 21 |  * Does nothing, instead of default behaviour to print to stdout.
 22 |  */
 23 | size_t write_callback(char *ptr, size_t size, size_t nmemb, void *userdata) {
 24 |     return size * nmemb;
 25 | }
 26 | 
 27 | /*
 28 |  * Verify the access token.
 29 |  */
 30 | int verify_access_token(const char* username, const char* access_token,
 31 |                         const char* url, int verify_ssl) {
 32 |     CURL *curl = curl_easy_init();
 33 |     if (!curl) {
 34 |         return PAM_SYSTEM_ERR;
 35 |     }
 36 | 
 37 |     curl_easy_setopt(curl, CURLOPT_WRITEFUNCTION, write_callback);
 38 |     /* url may be redirected, so we tell libcurl to follow redirection */
 39 |     curl_easy_setopt(curl, CURLOPT_FOLLOWLOCATION, 1L);
 40 |     if (!verify_ssl) {
 41 |         curl_easy_setopt(curl, CURLOPT_SSL_VERIFYPEER, 0L);
 42 |         curl_easy_setopt(curl, CURLOPT_SSL_VERIFYHOST, 0L);
 43 |     }
 44 | 
 45 |     /* Encode parameters */
 46 |     char* encoded_username = curl_easy_escape(curl, username, 0);
 47 |     char* encoded_access_token = curl_easy_escape(curl, access_token, 0);
 48 |     if (!encoded_username || ! encoded_access_token) {
 49 |         return PAM_SYSTEM_ERR;
 50 |     }
 51 | 
 52 |     /* Build url */
 53 |     char full_url[1024];
 54 |     snprintf(full_url, sizeof(full_url), "%s?user=%s&access_token=%s", url,
 55 |              encoded_username, encoded_access_token);
 56 |     curl_free(encoded_username);
 57 |     curl_free(encoded_access_token);
 58 | 
 59 |     printf("Full url: %s\n", full_url);
 60 |     curl_easy_setopt(curl, CURLOPT_URL, full_url);
 61 | 
 62 |     CURLcode res = curl_easy_perform(curl);
 63 |     /* Check for errors */
 64 |     if(res != CURLE_OK)
 65 |       fprintf(stderr, "curl_easy_perform() failed: %s\n",
 66 |               curl_easy_strerror(res));
 67 | 
 68 |     long http_code = 0;
 69 |     curl_easy_getinfo (curl, CURLINFO_RESPONSE_CODE, &http_code);
 70 |     curl_easy_cleanup(curl);
 71 | 
 72 |     return http_code == 200;
 73 | }
 74 | 
 75 | /*
 76 |  * PAM module callback for 'auth'
 77 |  */
 78 | PAM_EXTERN int pam_sm_authenticate(pam_handle_t *pamh, int flags, int argc,
 79 |                                    const char **argv ) {
 80 |     int retval;
 81 | 
 82 |     if (argc < 1) {
 83 |         return PAM_SYSTEM_ERR; // fail instantly if not configured with url
 84 |     }
 85 | 
 86 |     const char* p_user;
 87 |     retval = pam_get_user(pamh, &p_user, "Username: ");
 88 |     if (retval != PAM_SUCCESS) {
 89 |         return retval;
 90 |     }
 91 | 
 92 |     const char* p_access_token;
 93 |     retval = pam_get_authtok(pamh, PAM_AUTHTOK, &p_access_token, "Access token: ");
 94 |     if (retval != PAM_SUCCESS) {
 95 |         return retval;
 96 |     }
 97 | 
 98 |     int verify_ssl = 1;
 99 |     if (argc == 2) {
100 |         verify_ssl = atoi(argv[1]);
101 |     }
102 | 
103 |     return verify_access_token(p_user, p_access_token, argv[0], verify_ssl) ?
104 |                 PAM_SUCCESS : PAM_AUTH_ERR;
105 | }
106 | 
107 | /*
108 |  * PAM module callback for 'auth'
109 |  */
110 | PAM_EXTERN int pam_sm_setcred(pam_handle_t *pamh, int flags, int argc,
111 |                               const char **argv ) {
112 | 	return PAM_SUCCESS;
113 | }


--------------------------------------------------------------------------------
/src/service_provider/__init__.py:
--------------------------------------------------------------------------------
1 | __author__ = 'danielevertsson'
2 | 


--------------------------------------------------------------------------------
/src/service_provider/certs/server.crt:
--------------------------------------------------------------------------------
 1 | -----BEGIN CERTIFICATE-----
 2 | MIICGTCCAYICCQCIs8fF+AnxUzANBgkqhkiG9w0BAQUFADBRMQswCQYDVQQGEwJT
 3 | RTETMBEGA1UECBMKU29tZS1TdGF0ZTEMMAoGA1UEChMDVW1VMQwwCgYDVQQLEwNJ
 4 | VFMxETAPBgNVBAMTCHJvaGUwMDAyMB4XDTExMDkwNzA4MjMwOFoXDTEyMDkwNjA4
 5 | MjMwOFowUTELMAkGA1UEBhMCU0UxEzARBgNVBAgTClNvbWUtU3RhdGUxDDAKBgNV
 6 | BAoTA1VtVTEMMAoGA1UECxMDSVRTMREwDwYDVQQDEwhyb2hlMDAwMjCBnzANBgkq
 7 | hkiG9w0BAQEFAAOBjQAwgYkCgYEA5zbNbHIYIkGGJ3RGdRKkYmF4gOorv5eDuUKT
 8 | Vtuu3VvxrpOWvwnFV+NY0LgqkQSMMyVzodJE3SUuwQTUHPXXY5784vnkFqzPRx6b
 9 | HgPxKz7XfwQjEBTafQTMmOeYI8wFIOIHY5i0RWR+gxDbh/D5TXuUqScOOqR47vSp
10 | IbUH+ncCAwEAATANBgkqhkiG9w0BAQUFAAOBgQDP9PE53utRqocZpFRxrhL+4vcI
11 | vlQd3XonE7vMJwdl9FUW7QRMon19dpYKQ6LTCOBA4ZCwh2z/Om2X97zogMLKFPcE
12 | LVqxzBVlrzuqAgOErEalYv9pCBzoFHGUHP6kTAUOCsoO9ZdQWgA6YkK2hYRSlLNX
13 | Z0wHIHGaHe5xnFFpyQ==
14 | -----END CERTIFICATE-----
15 | 


--------------------------------------------------------------------------------
/src/service_provider/certs/server.key:
--------------------------------------------------------------------------------
 1 | -----BEGIN RSA PRIVATE KEY-----
 2 | MIICXAIBAAKBgQDnNs1schgiQYYndEZ1EqRiYXiA6iu/l4O5QpNW267dW/Guk5a/
 3 | CcVX41jQuCqRBIwzJXOh0kTdJS7BBNQc9ddjnvzi+eQWrM9HHpseA/ErPtd/BCMQ
 4 | FNp9BMyY55gjzAUg4gdjmLRFZH6DENuH8PlNe5SpJw46pHju9KkhtQf6dwIDAQAB
 5 | AoGAKuSxy1KHQ6OgPaWGhKWGtXGbp17J6usy1qWRK+XpVMt/1IEw0BQB9kII8f+Y
 6 | dfq//6UNBJI7kEMbn1dD+nNpF4ncO9QWHE5oqacHgaZOl6+MF3ePy8aXkADhwiel
 7 | L7CtZjhwbcjGt5PI6AIcpFfmBAbu5Pf4gidr6bR+MoJGlhECQQDzfMaRqruJkqsz
 8 | Z5b9boIr08orx1xPoHTmE5g0ET9+UJy/BBgx7DNv+AQhJ2UC1ZaKcgqwetOwJhQs
 9 | u8Cbrct9AkEA8xiQSwqlM7ltpNl6L2VvSxzTd897it+FJElXbD6u80RvzMuo3Xw3
10 | +M+F0kDobM4vsyBuZRw418/yOpnOv8x4AwJATj5WgRDgWwEqysYLGz2bzwGsAg16
11 | eIwThKvfSTwRr0GwXSGvtLs2fFCy4wSJzTNdwPeMv9F4nS5fZVCgQGbE8QJAMZBG
12 | iyZGfH9H/Z5hrRwvTs83xmvFMpFUIgvaCTXWkb7YVJcJfO8AsngNPssBGH4Jd6ob
13 | F/5jEI1TQ+NsJerYZQJBAJdqDlnPQyqek4kdBvwh2hYo9EwOrgOchmruMOeP5lE6
14 | 2TLIyjYC3uVMPJj+ESayVcAMrgj4Enk4qh/WKVeMJ7c=
15 | -----END RSA PRIVATE KEY-----
16 | 


--------------------------------------------------------------------------------
/src/service_provider/conf.py.example:
--------------------------------------------------------------------------------
 1 | # If https is to be used these has to be specified
 2 | SERVER_CERT = "certs/server.crt"
 3 | SERVER_KEY = "certs/server.key"
 4 | CA_BUNDLE = None
 5 | 
 6 | VERIFY_SSL = False
 7 | 
 8 | # information used when registering the client
 9 | 
10 | ME = {
11 |     "application_type": "web",
12 |     "redirect_uris": ["%sauthz_cb" % BASE],
13 |     "response_types": ["code"]
14 | }
15 | 
16 | PAM_DATABASE = "pam.db"
17 | 
18 | BEHAVIOUR = {
19 |     "response_type": "code",
20 |     "scope": ["openid", "auth_test"],
21 | }
22 | 
23 | CLIENTS = {
24 |     "": {
25 |         "client_info": ME,
26 |         "behaviour": BEHAVIOUR
27 |     },
28 | }


--------------------------------------------------------------------------------
/src/service_provider/database.py:
--------------------------------------------------------------------------------
 1 | import dataset
 2 | from prettytable import PrettyTable
 3 | 
 4 | __author__ = 'danielevertsson'
 5 | 
 6 | ISSUER_COLUMN = "issuer"
 7 | LOCAL_USER_COLUMN = "local_user"
 8 | SUBECT_ID_COLUMN = "subject_id"
 9 | 
10 | class PamDatabase():
11 |     TABLE_NAME = 'pam'
12 | 
13 |     def __init__(self, dict_path):
14 |         self.database = dataset.connect('sqlite:///' + dict_path)
15 |         self.table = self.database[self.TABLE_NAME]
16 | 
17 |     def clear(self):
18 |         self.table.drop()
19 |         self.table = self.database[self.TABLE_NAME]
20 | 
21 |     def upsert(self, issuer, local_user, subject_id):
22 |         row = {ISSUER_COLUMN: issuer,
23 |                LOCAL_USER_COLUMN: local_user,
24 |                SUBECT_ID_COLUMN: subject_id}
25 |         self.table.upsert(row, [LOCAL_USER_COLUMN])
26 | 
27 |     def get_row(self, local_user):
28 |         return self.table.find_one(local_user=local_user)
29 | 
30 |     def get_table_as_list(self):
31 |         list = []
32 |         rows = self.table.find(order_by=[SUBECT_ID_COLUMN])
33 |         for row in rows:
34 |             list.append([row[SUBECT_ID_COLUMN], row[LOCAL_USER_COLUMN], row[ISSUER_COLUMN]])
35 |         return list
36 | 
37 |     def print_table(self):
38 |         list =self.get_table_as_list()
39 |         table = PrettyTable([SUBECT_ID_COLUMN, LOCAL_USER_COLUMN, ISSUER_COLUMN])
40 |         table.padding_width = 1
41 | 
42 |         for row in list:
43 |             list = []
44 |             for element in row:
45 |                 if isinstance(element, int):
46 |                     list.append(element)
47 |                 else:
48 |                     list.append(element.encode('utf8'))
49 |             table.add_row(list)
50 |         print table


--------------------------------------------------------------------------------
/src/service_provider/htdocs/access_token.mako:
--------------------------------------------------------------------------------
 1 | <!DOCTYPE html>
 2 | 
 3 | <html>
 4 | <head>
 5 |     <title>pyoidc RP</title>
 6 |     <meta name="viewport" content="width=device-width, initial-scale=1.0">
 7 |     <!-- Bootstrap -->
 8 |     <link href="static/bootstrap/css/bootstrap.min.css" rel="stylesheet" media="screen">
 9 |     <link href="static/style.css" rel="stylesheet" media="all">
10 | 
11 |     <!-- HTML5 shim and Respond.js IE8 support of HTML5 elements and media queries -->
12 |     <!--[if lt IE 9]>
13 |     <script src="../../assets/js/html5shiv.js"></script>
14 |     <script src="../../assets/js/respond.min.js"></script>
15 |     <![endif]-->
16 | </head>
17 | <body>
18 | 
19 | <!-- Static navbar -->
20 | <div class="navbar navbar-default navbar-fixed-top">
21 |     <div class="navbar-header">
22 |         <button type="button" class="navbar-toggle" data-toggle="collapse" data-target=".navbar-collapse">
23 |             <span class="icon-bar"></span>
24 |             <span class="icon-bar"></span>
25 |             <span class="icon-bar"></span>
26 |         </button>
27 |         <a class="navbar-brand" href="#">pyoidc RP</a>
28 |     </div>
29 |     <div class="navbar-collapse collapse">
30 |         <ul class="nav navbar-nav">
31 |         </ul>
32 |         <ul class="nav navbar-nav navbar-right">
33 |             <li><a href="logout">Logout</a></li>
34 |         </ul>
35 |     </div>
36 |     <!--/.nav-collapse -->
37 | </div>
38 | 
39 | <div class="container">
40 |     <!-- Main component for a primary marketing message or call to action -->
41 |     <div class="jumbotron">
42 |         <h1>Access token </h1>
43 |         Access token received from the server:
44 |         <input type="text"
45 |                class="form-control"
46 |                value="${access_token}">
47 |     </div>
48 | 
49 | </div>
50 | <!-- /container -->
51 | 
52 | 
53 | % if check_session_iframe_url is not UNDEFINED:
54 |     <iframe id="rp_iframe" src="/session_iframe" hidden></iframe>
55 |     <iframe id="op_iframe" src="${check_session_iframe_url}" hidden></iframe>
56 | % endif
57 | 
58 | 
59 | <!-- jQuery (necessary for Bootstrap's JavaScript plugins) -->
60 | <script src="/static/jquery.min.1.9.1.js"></script>
61 | <!-- Include all compiled plugins (below), or include individual files as needed -->
62 | <script src="/static/bootstrap/js/bootstrap.min.js"></script>
63 | 
64 | 
65 | </body>
66 | </html>


--------------------------------------------------------------------------------
/src/service_provider/htdocs/opchoice.mako:
--------------------------------------------------------------------------------
 1 | <%!
 2 |     def op_choice(op_list):
 3 |         #Creates a dropdown list of OpenID Connect providers
 4 |         element = "<select name=\"op\">"
 5 |         for name in op_list:
 6 |             element += "<option value=\"%s\">%s</option>" % (name, name)
 7 |         element += "</select>"
 8 |         return element
 9 | %>
10 | 
11 | <!DOCTYPE html>
12 | 
13 | <html>
14 | <head>
15 |     <title>pyoidc RP</title>
16 |     <meta name="viewport" content="width=device-width, initial-scale=1.0">
17 |     <!-- Bootstrap -->
18 |     <link href="static/bootstrap/css/bootstrap.min.css" rel="stylesheet" media="screen">
19 |     <link href="static/style.css" rel="stylesheet" media="all">
20 | 
21 |     <!-- HTML5 shim and Respond.js IE8 support of HTML5 elements and media queries -->
22 |     <!--[if lt IE 9]>
23 |     <script src="../../assets/js/html5shiv.js"></script>
24 |     <script src="../../assets/js/respond.min.js"></script>
25 |     <![endif]-->
26 | </head>
27 | <body>
28 | 
29 | <!-- Static navbar -->
30 | <div class="navbar navbar-default navbar-fixed-top">
31 |     <div class="navbar-header">
32 |         <a class="navbar-brand" href="#">pyoidc RP</a>
33 |     </div>
34 | </div>
35 | 
36 | <div class="container">
37 |     <!-- Main component for a primary marketing message or call to action -->
38 |     <div class="jumbotron">
39 |         <form class="form-signin" action="rp" method="get">
40 |             <h1>OP by UID</h1>
41 | 
42 |             <h3>Chose the OpenID Connect Provider: </h3>
43 | 
44 |             <p>From this list</p>
45 |             ${op_choice(op_list)}
46 |             <p> OR by providing your unique identifier at the OP. </p>
47 |             <input type="text" id="uid" name="uid" class="form-control" placeholder="UID" autofocus>
48 |             <button class="btn btn-lg btn-primary btn-block" type="submit">Start</button>
49 |         </form>
50 |     </div>
51 | 
52 | </div>
53 | <!-- /container -->
54 | <!-- jQuery (necessary for Bootstrap's JavaScript plugins) -->
55 | <script src="/static/jquery.min.1.9.1.js"></script>
56 | <!-- Include all compiled plugins (below), or include individual files as needed -->
57 | <script src="/static/bootstrap/js/bootstrap.min.js"></script>
58 | 
59 | </body>
60 | </html>


--------------------------------------------------------------------------------
/src/service_provider/htdocs/operror.mako:
--------------------------------------------------------------------------------
 1 | <!DOCTYPE html>
 2 | 
 3 | <html>
 4 | <head>
 5 |     <title>pyoidc RP</title>
 6 |     <meta name="viewport" content="width=device-width, initial-scale=1.0">
 7 |     <!-- Bootstrap -->
 8 |     <link href="static/bootstrap/css/bootstrap.min.css" rel="stylesheet" media="screen">
 9 |     <link href="static/style.css" rel="stylesheet" media="all">
10 | 
11 |     <!-- HTML5 shim and Respond.js IE8 support of HTML5 elements and media queries -->
12 |     <!--[if lt IE 9]>
13 |     <script src="../../assets/js/html5shiv.js"></script>
14 |     <script src="../../assets/js/respond.min.js"></script>
15 |     <![endif]-->
16 | </head>
17 | <body>
18 | 
19 | <!-- Static navbar -->
20 | <div class="navbar navbar-default navbar-fixed-top">
21 |     <div class="navbar-header">
22 |         <button type="button" class="navbar-toggle" data-toggle="collapse" data-target=".navbar-collapse">
23 |             <span class="icon-bar"></span>
24 |             <span class="icon-bar"></span>
25 |             <span class="icon-bar"></span>
26 |         </button>
27 |         <a class="navbar-brand" href="#">pyoidc RP</a>
28 |     </div>
29 |     <div class="navbar-collapse collapse">
30 |         <ul class="nav navbar-nav">
31 |         </ul>
32 |         <ul class="nav navbar-nav navbar-right">
33 |             <li><a href="logout">Logout</a></li>
34 |         </ul>
35 |     </div>
36 |     <!--/.nav-collapse -->
37 | </div>
38 | 
39 | <div class="container">
40 |     <!-- Main component for a primary marketing message or call to action -->
41 |     <div class="jumbotron">
42 |         <h1>OP result</h1>
43 | 
44 |         <p>You have failed to connect to the designated OP with the message:</p>
45 | 
46 |         <p>${error}</p>
47 |     </div>
48 | 
49 | </div>
50 | <!-- /container -->
51 | <!-- jQuery (necessary for Bootstrap's JavaScript plugins) -->
52 | <script src="/static/jquery.min.1.9.1.js"></script>
53 | <!-- Include all compiled plugins (below), or include individual files as needed -->
54 | <script src="/static/bootstrap/js/bootstrap.min.js"></script>
55 | 
56 | </body>
57 | </html>


--------------------------------------------------------------------------------
/src/service_provider/htdocs/rp_session_iframe.mako:
--------------------------------------------------------------------------------
 1 | <!DOCTYPE html>
 2 | <html>
 3 | <head lang="en">
 4 |     <meta charset="UTF-8">
 5 |     <title></title>
 6 | </head>
 7 | <body>
 8 | 
 9 | <script type="application/javascript">
10 |     var client_id = "${client_id}";
11 |     var session_state = "${session_state}";
12 |     console.log("RP session state: " + session_state);
13 |     var targetOrigin = "${issuer}".replace(/\/$/, "");
14 | 
15 |     var stat = "unchanged";
16 |     var mes = client_id + " " + session_state;
17 | 
18 |     window.addEventListener("message", receiveMessage, false);
19 |     checkSession();
20 |     console.log("RP iframe, starting timer.");
21 |     var timer_id = setInterval(checkSession, 5 * 1000);
22 | 
23 |     function checkSession() {
24 |         var win = window.parent.document.getElementById("op_iframe").contentWindow;
25 |         win.postMessage(mes, targetOrigin);
26 |     }
27 | 
28 |     function receiveMessage(e) {
29 |         console.log("origin: " + e.origin + " expected: " + targetOrigin);
30 |         if (e.origin !== targetOrigin) {
31 |             return;
32 |         }
33 |         stat = e.data;
34 | 
35 |         if (stat == "changed") {
36 |             clearInterval(timer_id);
37 |             alert("Your session has changed, you will be redirected to log in again.");
38 |             window.parent.window.location = "${session_change_url}";
39 |         }
40 |     }
41 | </script>
42 | 
43 | </body>
44 | </html>


--------------------------------------------------------------------------------
/src/service_provider/oidc.py:
--------------------------------------------------------------------------------
  1 | from oic.utils.http_util import Redirect
  2 | from oic.exception import MissingAttribute
  3 | from oic import oic
  4 | from oic.oauth2 import rndstr, ErrorResponse
  5 | from oic.oic import ProviderConfigurationResponse, AuthorizationResponse
  6 | from oic.oic import RegistrationResponse
  7 | from oic.oic import AuthorizationRequest
  8 | from oic.utils.authn.client import CLIENT_AUTHN_METHOD
  9 | 
 10 | __author__ = 'roland'
 11 | 
 12 | import logging
 13 | 
 14 | logger = logging.getLogger(__name__)
 15 | 
 16 | 
 17 | class OIDCError(Exception):
 18 |     pass
 19 | 
 20 | 
 21 | class Client(oic.Client):
 22 |     def __init__(self, client_id=None, ca_certs=None,
 23 |                  client_prefs=None, client_authn_method=None, keyjar=None,
 24 |                  verify_ssl=True, behaviour=None):
 25 |         oic.Client.__init__(self, client_id, ca_certs, client_prefs,
 26 |                             client_authn_method, keyjar, verify_ssl)
 27 |         if behaviour:
 28 |             self.behaviour = behaviour
 29 | 
 30 |     def create_authn_request(self, session, acr_value=None, **kwargs):
 31 |         session["state"] = rndstr()
 32 |         session["nonce"] = rndstr()
 33 |         request_args = {
 34 |             "response_type": self.behaviour["response_type"],
 35 |             "scope": self.behaviour["scope"],
 36 |             "state": session["state"],
 37 |             "nonce": session["nonce"],
 38 |             "redirect_uri": self.registration_response["redirect_uris"][0]
 39 |         }
 40 | 
 41 |         if acr_value is not None:
 42 |             request_args["acr_values"] = acr_value
 43 | 
 44 |         request_args.update(kwargs)
 45 |         cis = self.construct_AuthorizationRequest(request_args=request_args)
 46 |         logger.debug("request: %s" % cis)
 47 | 
 48 |         url, body, ht_args, cis = self.uri_and_body(AuthorizationRequest, cis,
 49 |                                                     method="GET",
 50 |                                                     request_args=request_args)
 51 | 
 52 |         logger.debug("body: %s" % body)
 53 |         logger.info("URL: %s" % url)
 54 |         logger.debug("ht_args: %s" % ht_args)
 55 | 
 56 |         resp = Redirect(str(url))
 57 |         if ht_args:
 58 |             resp.headers.extend([(a, b) for a, b in ht_args.items()])
 59 |         logger.debug("resp_headers: %s" % resp.headers)
 60 |         return resp
 61 | 
 62 |     def callback(self, response, session):
 63 |         """
 64 |         This is the method that should be called when an AuthN response has been
 65 |         received from the OP.
 66 | 
 67 |         :param response: The URL returned by the OP
 68 |         :return:
 69 |         """
 70 |         authresp = self.parse_response(AuthorizationResponse, response,
 71 |                                        sformat="dict", keyjar=self.keyjar)
 72 | 
 73 |         if isinstance(authresp, ErrorResponse):
 74 |             if authresp["error"] == "login_required":
 75 |                 return self.create_authn_request(session)
 76 |             else:
 77 |                 return OIDCError("Access denied")
 78 | 
 79 |         if session["state"] != authresp["state"]:
 80 |             return OIDCError("Received state not the same as expected.")
 81 | 
 82 |         try:
 83 |             if authresp["id_token"] != session["nonce"]:
 84 |                 return OIDCError("Received nonce not the same as expected.")
 85 |             self.id_token[authresp["state"]] = authresp["id_token"]
 86 |         except KeyError:
 87 |             pass
 88 | 
 89 |         if self.behaviour["response_type"] == "code":
 90 |             # get the access token
 91 |             try:
 92 |                 args = {
 93 |                     "code": authresp["code"],
 94 |                     "redirect_uri": self.registration_response[
 95 |                         "redirect_uris"][0],
 96 |                     "client_id": self.client_id,
 97 |                     "client_secret": self.client_secret
 98 |                 }
 99 | 
100 |                 access_token_response = self.do_access_token_request(
101 |                     scope="openid", state=authresp["state"], request_args=args,
102 |                     authn_method=self.registration_response["token_endpoint_auth_method"])
103 |             except Exception as err:
104 |                 logger.error("%s" % err)
105 |                 raise
106 | 
107 |             if isinstance(access_token_response, ErrorResponse):
108 |                 raise OIDCError("Invalid response %s." % access_token_response["error"])
109 | 
110 |         return access_token_response
111 | 
112 |     def request_user_info(self, access_token):
113 |         inforesp = self.do_user_info_request(**{"access_token": access_token})
114 | 
115 |         if isinstance(inforesp, ErrorResponse):
116 |             raise OIDCError("Invalid response %s." % inforesp["error"])
117 | 
118 |         userinfo = inforesp.to_dict()
119 | 
120 |         logger.debug("UserInfo: %s" % inforesp)
121 | 
122 |         return userinfo
123 | 
124 | 
125 | 
126 | class OIDCClients(object):
127 |     def __init__(self, config):
128 |         """
129 | 
130 |         :param config: Imported configuration module
131 |         :return:
132 |         """
133 |         self.client = {}
134 |         self.client_cls = Client
135 |         self.config = config
136 | 
137 |         for key, val in config.CLIENTS.items():
138 |             if key == "":
139 |                 continue
140 |             else:
141 |                 self.client[key] = self.create_client(**val)
142 | 
143 |     def create_client(self, userid="", **kwargs):
144 |         """
145 |         Do an instantiation of a client instance
146 | 
147 |         :param userid: An identifier of the user
148 |         :param: Keyword arguments
149 |             Keys are ["srv_discovery_url", "client_info", "client_registration",
150 |             "provider_info"]
151 |         :return: client instance
152 |         """
153 | 
154 |         _key_set = set(kwargs.keys())
155 |         args = {}
156 |         for param in ["verify_ssl"]:
157 |             try:
158 |                 args[param] = kwargs[param]
159 |             except KeyError:
160 |                 pass
161 |             else:
162 |                 _key_set.discard(param)
163 | 
164 |         client = self.client_cls(client_authn_method=CLIENT_AUTHN_METHOD,
165 |                                  behaviour=kwargs["behaviour"], verify_ssl=self.config.VERIFY_SSL, **args)
166 | 
167 |         # The behaviour parameter is not significant for the election process
168 |         _key_set.discard("behaviour")
169 |         for param in ["allow"]:
170 |             try:
171 |                 setattr(client, param, kwargs[param])
172 |             except KeyError:
173 |                 pass
174 |             else:
175 |                 _key_set.discard(param)
176 | 
177 |         if _key_set == set(["client_info"]):  # Everything dynamic
178 |             # There has to be a userid
179 |             if not userid:
180 |                 raise MissingAttribute("Missing userid specification")
181 | 
182 |             # Find the service that provides information about the OP
183 |             issuer = client.wf.discovery_query(userid)
184 |             # Gather OP information
185 |             _ = client.provider_config(issuer)
186 |             # register the client
187 |             _ = client.register(client.provider_info["registration_endpoint"],
188 |                                 **kwargs["client_info"])
189 |         elif _key_set == set(["client_info", "srv_discovery_url"]):
190 |             # Ship the webfinger part
191 |             # Gather OP information
192 |             _ = client.provider_config(kwargs["srv_discovery_url"])
193 |             # register the client
194 |             _ = client.register(client.provider_info["registration_endpoint"],
195 |                                 **kwargs["client_info"])
196 |         elif _key_set == set(["provider_info", "client_info"]):
197 |             client.handle_provider_config(
198 |                 ProviderConfigurationResponse(**kwargs["provider_info"]),
199 |                 kwargs["provider_info"]["issuer"])
200 |             _ = client.register(client.provider_info["registration_endpoint"],
201 |                                 **kwargs["client_info"])
202 |         elif _key_set == set(["provider_info", "client_registration"]):
203 |             client.handle_provider_config(
204 |                 ProviderConfigurationResponse(**kwargs["provider_info"]),
205 |                 kwargs["provider_info"]["issuer"])
206 |             client.store_registration_info(RegistrationResponse(
207 |                 **kwargs["client_registration"]))
208 |         elif _key_set == set(["srv_discovery_url", "client_registration"]):
209 |             _ = client.provider_config(kwargs["srv_discovery_url"])
210 |             client.store_registration_info(RegistrationResponse(
211 |                 **kwargs["client_registration"]))
212 |         else:
213 |             raise Exception("Configuration error ?")
214 | 
215 |         return client
216 | 
217 |     def dynamic_client(self, userid):
218 |         client = self.client_cls(client_authn_method=CLIENT_AUTHN_METHOD,
219 |                                  verify_ssl=self.config.VERIFY_SSL)
220 | 
221 |         issuer = client.wf.discovery_query(userid)
222 |         if issuer in self.client:
223 |             return self.client[issuer]
224 |         else:
225 |             # Gather OP information
226 |             _pcr = client.provider_config(issuer)
227 |             # register the client
228 |             _ = client.register(_pcr["registration_endpoint"],
229 |                                 **self.config.CLIENTS[""]["client_info"])
230 |             try:
231 |                 client.behaviour.update(**self.config.CLIENTS[""]["behaviour"])
232 |             except KeyError:
233 |                 pass
234 | 
235 |             self.client[issuer] = client
236 |             return client
237 | 
238 |     def __getitem__(self, item):
239 |         """
240 |         Given a service or user identifier return a suitable client
241 |         :param item:
242 |         :return:
243 |         """
244 |         try:
245 |             return self.client[item]
246 |         except KeyError:
247 |             return self.dynamic_client(item)
248 | 
249 |     def keys(self):
250 |         return self.client.keys()
251 | 


--------------------------------------------------------------------------------
/src/service_provider/requirements.txt:
--------------------------------------------------------------------------------
1 | dataset
2 | prettytable
3 | 


--------------------------------------------------------------------------------
/src/service_provider/service_provider.py:
--------------------------------------------------------------------------------
  1 | #!/usr/bin/env python
  2 | import importlib
  3 | import urlparse
  4 | from urlparse import parse_qs
  5 | import logging
  6 | import argparse
  7 | from mako.lookup import TemplateLookup
  8 | from oic.utils.http_util import NotFound, Unauthorized, ServiceError
  9 | from oic.utils.http_util import Response
 10 | from oic.utils.http_util import Redirect
 11 | from database import PamDatabase
 12 | from oidc import OIDCClients
 13 | from oidc import OIDCError
 14 | from beaker.middleware import SessionMiddleware
 15 | from cherrypy import wsgiserver
 16 | 
 17 | 
 18 | def setup_logger():
 19 |     global LOGGER, LOGFILE_NAME, hdlr, base_formatter
 20 |     LOGGER = logging.getLogger("")
 21 |     LOGFILE_NAME = 'service_provider.log'
 22 |     hdlr = logging.FileHandler(LOGFILE_NAME)
 23 |     base_formatter = logging.Formatter(
 24 |         "%(asctime)s %(name)s:%(levelname)s %(message)s")
 25 |     hdlr.setFormatter(base_formatter)
 26 |     LOGGER.addHandler(hdlr)
 27 |     LOGGER.setLevel(logging.DEBUG)
 28 | 
 29 | 
 30 | setup_logger()
 31 | 
 32 | LOOKUP = TemplateLookup(directories=['templates', 'htdocs'],
 33 |                         module_directory='modules',
 34 |                         input_encoding='utf-8',
 35 |                         output_encoding='utf-8')
 36 | 
 37 | # noinspection PyUnresolvedReferences
 38 | def static(environ, start_response, logger, path):
 39 |     logger.info("[static]sending: %s" % (path,))
 40 | 
 41 |     try:
 42 |         text = open(path).read()
 43 |         if path.endswith(".ico"):
 44 |             start_response('200 OK', [('Content-Type', "image/x-icon")])
 45 |         elif path.endswith(".html"):
 46 |             start_response('200 OK', [('Content-Type', 'text/html')])
 47 |         elif path.endswith(".json"):
 48 |             start_response('200 OK', [('Content-Type', 'application/json')])
 49 |         elif path.endswith(".txt"):
 50 |             start_response('200 OK', [('Content-Type', 'text/plain')])
 51 |         elif path.endswith(".css"):
 52 |             start_response('200 OK', [('Content-Type', 'text/css')])
 53 |         else:
 54 |             start_response('200 OK', [('Content-Type', "text/xml")])
 55 |         return [text]
 56 |     except IOError:
 57 |         resp = NotFound()
 58 |         return resp(environ, start_response)
 59 | 
 60 | 
 61 | def opchoice(environ, start_response, clients):
 62 |     resp = Response(mako_template="opchoice.mako",
 63 |                     template_lookup=LOOKUP,
 64 |                     headers=[])
 65 |     argv = {
 66 |         "op_list": clients.keys()
 67 |     }
 68 |     return resp(environ, start_response, **argv)
 69 | 
 70 | 
 71 | def access_token_page(environ, start_response, access_token):
 72 |     resp = Response(mako_template="access_token.mako",
 73 |                     template_lookup=LOOKUP,
 74 |                     headers=[])
 75 |     argv = {
 76 |         "access_token": access_token,
 77 |     }
 78 | 
 79 |     return resp(environ, start_response, **argv)
 80 | 
 81 | 
 82 | def operror(environ, start_response, error=None):
 83 |     resp = Response(mako_template="operror.mako",
 84 |                     template_lookup=LOOKUP,
 85 |                     headers=[])
 86 |     argv = {
 87 |         "error": error
 88 |     }
 89 |     return resp(environ, start_response, **argv)
 90 | 
 91 | 
 92 | def verify_userinfo(row, user_info):
 93 |     if user_info["sub"] == row["subject_id"]:
 94 |         for scope in conf.BEHAVIOUR["scope"]:
 95 |             if scope in user_info:
 96 |                 return Response()
 97 | 
 98 |         error_message = "No auth claim in user info response (%s)" % user_info.keys()
 99 |         LOGGER.error(error_message)
100 |         return ServiceError(error_message)
101 | 
102 |     error_message = "Logged in user (%s) does not match the one stored in the database (%s)" % (
103 |         user_info["sub"], row["subject_id"])
104 |     LOGGER.debug(error_message)
105 |     return Unauthorized(error_message)
106 | 
107 | 
108 | def verify_access_token(query):
109 |     local_user = query['user'][0]
110 |     row = DATABASE.get_row(local_user)
111 | 
112 |     if not row:
113 |         error_message = "No local user (%s) found in the database." % local_user
114 |         LOGGER.error(error_message)
115 |         return ServiceError(error_message)
116 | 
117 |     access_token = query['access_token'][0]
118 |     client = CLIENTS[row["issuer"]]
119 |     user_info = client.request_user_info(access_token)
120 | 
121 |     return verify_userinfo(row, user_info)
122 | 
123 | 
124 | def application(environ, start_response):
125 |     session = environ['beaker.session']
126 |     path = environ.get('PATH_INFO', '').lstrip('/')
127 |     query = parse_qs(environ["QUERY_STRING"])
128 | 
129 |     if path == "robots.txt":
130 |         return static(environ, start_response, LOGGER, "static/robots.txt")
131 | 
132 |     if path.startswith("static/"):
133 |         return static(environ, start_response, LOGGER, path)
134 | 
135 |     if path == "rp":  # After having chosen which OP to authenticate at
136 |         if "uid" in query:
137 |             client = CLIENTS.dynamic_client(query["uid"][0])
138 |             session["op"] = client.provider_info["issuer"]
139 |         else:
140 |             client = CLIENTS[query["op"][0]]
141 |             session["op"] = query["op"][0]
142 | 
143 |         try:
144 |             resp = client.create_authn_request(session)
145 |         except Exception:
146 |             raise
147 |         else:
148 |             return resp(environ, start_response)
149 |     elif path == "authz_cb":  # After having authenticated at the OP
150 |         client = CLIENTS[session["op"]]
151 |         try:
152 |             result = client.callback(query, session)
153 |             if isinstance(result, Redirect):
154 |                 return result(environ, start_response)
155 |         except OIDCError as err:
156 |             return operror(environ, start_response, "%s" % err)
157 |         except Exception as ex:
158 |             raise
159 |         else:
160 |             DATABASE.upsert(issuer=session["op"],
161 |                             local_user=session['local_username'],
162 |                             subject_id=result['id_token']['sub'])
163 |             return access_token_page(environ, start_response,
164 |                                      result['access_token'])
165 |     elif path == "verify_access_token":
166 |         response = verify_access_token(query)
167 |         return response(environ, start_response)
168 | 
169 |     if "username" in query:
170 |         session['local_username'] = query['username'][0]
171 |     return opchoice(environ, start_response, CLIENTS)
172 | 
173 | 
174 | if __name__ == '__main__':
175 |     parser = argparse.ArgumentParser()
176 |     parser.add_argument("-b", required=True, dest="base",
177 |                         help="base url of the service provider")
178 |     parser.add_argument("-p", dest="port", default=8090,
179 |                         help="port of the service provider", type=int)
180 |     parser.add_argument("--provider", dest="provider",
181 |                         help="issuer url to non web OpenID Connect provider")
182 |     parser.add_argument(dest="config")
183 |     args = parser.parse_args()
184 |     conf = importlib.import_module(args.config)
185 | 
186 |     args.base = "{base}:{port}".format(base=args.base.rstrip("/"), port=args.port)
187 |     if not args.base.endswith("/"):
188 |         args.base += "/"
189 | 
190 |     conf.ME["redirect_uris"] = [
191 |         url.format(base=args.base) for url in conf.ME["redirect_uris"]]
192 | 
193 |     if args.provider:
194 |         conf.CLIENTS["non-web-op"] = {
195 |             "srv_discovery_url": args.provider,
196 |             "client_info": conf.ME,
197 |             "behaviour": conf.BEHAVIOUR
198 |     }
199 | 
200 |     session_opts = {
201 |         'session.type': 'memory',
202 |         'session.cookie_expires': True,
203 |         'session.auto': True,
204 |         'session.key': "{}.beaker.session.id".format(
205 |             urlparse.urlparse(args.base).netloc.replace(":", "."))
206 |     }
207 | 
208 |     CLIENTS = OIDCClients(conf)
209 | 
210 |     SRV = wsgiserver.CherryPyWSGIServer(('0.0.0.0', args.port),
211 |                                         SessionMiddleware(application,
212 |                                                           session_opts))
213 |     DATABASE = PamDatabase(conf.PAM_DATABASE)
214 | 
215 |     if args.base.startswith("https"):
216 |         from cherrypy.wsgiserver import ssl_pyopenssl
217 | 
218 |         SRV.ssl_adapter = ssl_pyopenssl.pyOpenSSLAdapter(
219 |             conf.SERVER_CERT, conf.SERVER_KEY, conf.CA_BUNDLE)
220 | 
221 |     LOGGER.info("RP server starting listening on port:%s" % args.port)
222 |     print "RP server starting listening on port:%s" % args.port
223 |     try:
224 |         SRV.start()
225 |     except KeyboardInterrupt:
226 |         SRV.stop()
227 | 


--------------------------------------------------------------------------------
/src/service_provider/static/bootstrap/css/bootstrap-theme.css:
--------------------------------------------------------------------------------
  1 | .btn-default,
  2 | .btn-primary,
  3 | .btn-success,
  4 | .btn-info,
  5 | .btn-warning,
  6 | .btn-danger {
  7 |     text-shadow: 0 -1px 0 rgba(0, 0, 0, 0.2);
  8 |     -webkit-box-shadow: inset 0 1px 0 rgba(255, 255, 255, 0.15), 0 1px 1px rgba(0, 0, 0, 0.075);
  9 |     box-shadow: inset 0 1px 0 rgba(255, 255, 255, 0.15), 0 1px 1px rgba(0, 0, 0, 0.075);
 10 | }
 11 | 
 12 | .btn-default:active,
 13 | .btn-primary:active,
 14 | .btn-success:active,
 15 | .btn-info:active,
 16 | .btn-warning:active,
 17 | .btn-danger:active,
 18 | .btn-default.active,
 19 | .btn-primary.active,
 20 | .btn-success.active,
 21 | .btn-info.active,
 22 | .btn-warning.active,
 23 | .btn-danger.active {
 24 |     -webkit-box-shadow: inset 0 3px 5px rgba(0, 0, 0, 0.125);
 25 |     box-shadow: inset 0 3px 5px rgba(0, 0, 0, 0.125);
 26 | }
 27 | 
 28 | .btn:active,
 29 | .btn.active {
 30 |     background-image: none;
 31 | }
 32 | 
 33 | .btn-default {
 34 |     text-shadow: 0 1px 0 #fff;
 35 |     background-image: -webkit-gradient(linear, left 0%, left 100%, from(#ffffff), to(#e6e6e6));
 36 |     background-image: -webkit-linear-gradient(top, #ffffff, 0%, #e6e6e6, 100%);
 37 |     background-image: -moz-linear-gradient(top, #ffffff 0%, #e6e6e6 100%);
 38 |     background-image: linear-gradient(to bottom, #ffffff 0%, #e6e6e6 100%);
 39 |     background-repeat: repeat-x;
 40 |     border-color: #e0e0e0;
 41 |     border-color: #ccc;
 42 |     filter: progid:DXImageTransform.Microsoft.gradient(startColorstr='#ffffffff', endColorstr='#ffe6e6e6', GradientType=0);
 43 | }
 44 | 
 45 | .btn-default:active,
 46 | .btn-default.active {
 47 |     background-color: #e6e6e6;
 48 |     border-color: #e0e0e0;
 49 | }
 50 | 
 51 | .btn-primary {
 52 |     background-image: -webkit-gradient(linear, left 0%, left 100%, from(#428bca), to(#3071a9));
 53 |     background-image: -webkit-linear-gradient(top, #428bca, 0%, #3071a9, 100%);
 54 |     background-image: -moz-linear-gradient(top, #428bca 0%, #3071a9 100%);
 55 |     background-image: linear-gradient(to bottom, #428bca 0%, #3071a9 100%);
 56 |     background-repeat: repeat-x;
 57 |     border-color: #2d6ca2;
 58 |     filter: progid:DXImageTransform.Microsoft.gradient(startColorstr='#ff428bca', endColorstr='#ff3071a9', GradientType=0);
 59 | }
 60 | 
 61 | .btn-primary:active,
 62 | .btn-primary.active {
 63 |     background-color: #3071a9;
 64 |     border-color: #2d6ca2;
 65 | }
 66 | 
 67 | .btn-success {
 68 |     background-image: -webkit-gradient(linear, left 0%, left 100%, from(#5cb85c), to(#449d44));
 69 |     background-image: -webkit-linear-gradient(top, #5cb85c, 0%, #449d44, 100%);
 70 |     background-image: -moz-linear-gradient(top, #5cb85c 0%, #449d44 100%);
 71 |     background-image: linear-gradient(to bottom, #5cb85c 0%, #449d44 100%);
 72 |     background-repeat: repeat-x;
 73 |     border-color: #419641;
 74 |     filter: progid:DXImageTransform.Microsoft.gradient(startColorstr='#ff5cb85c', endColorstr='#ff449d44', GradientType=0);
 75 | }
 76 | 
 77 | .btn-success:active,
 78 | .btn-success.active {
 79 |     background-color: #449d44;
 80 |     border-color: #419641;
 81 | }
 82 | 
 83 | .btn-warning {
 84 |     background-image: -webkit-gradient(linear, left 0%, left 100%, from(#f0ad4e), to(#ec971f));
 85 |     background-image: -webkit-linear-gradient(top, #f0ad4e, 0%, #ec971f, 100%);
 86 |     background-image: -moz-linear-gradient(top, #f0ad4e 0%, #ec971f 100%);
 87 |     background-image: linear-gradient(to bottom, #f0ad4e 0%, #ec971f 100%);
 88 |     background-repeat: repeat-x;
 89 |     border-color: #eb9316;
 90 |     filter: progid:DXImageTransform.Microsoft.gradient(startColorstr='#fff0ad4e', endColorstr='#ffec971f', GradientType=0);
 91 | }
 92 | 
 93 | .btn-warning:active,
 94 | .btn-warning.active {
 95 |     background-color: #ec971f;
 96 |     border-color: #eb9316;
 97 | }
 98 | 
 99 | .btn-danger {
100 |     background-image: -webkit-gradient(linear, left 0%, left 100%, from(#d9534f), to(#c9302c));
101 |     background-image: -webkit-linear-gradient(top, #d9534f, 0%, #c9302c, 100%);
102 |     background-image: -moz-linear-gradient(top, #d9534f 0%, #c9302c 100%);
103 |     background-image: linear-gradient(to bottom, #d9534f 0%, #c9302c 100%);
104 |     background-repeat: repeat-x;
105 |     border-color: #c12e2a;
106 |     filter: progid:DXImageTransform.Microsoft.gradient(startColorstr='#ffd9534f', endColorstr='#ffc9302c', GradientType=0);
107 | }
108 | 
109 | .btn-danger:active,
110 | .btn-danger.active {
111 |     background-color: #c9302c;
112 |     border-color: #c12e2a;
113 | }
114 | 
115 | .btn-info {
116 |     background-image: -webkit-gradient(linear, left 0%, left 100%, from(#5bc0de), to(#31b0d5));
117 |     background-image: -webkit-linear-gradient(top, #5bc0de, 0%, #31b0d5, 100%);
118 |     background-image: -moz-linear-gradient(top, #5bc0de 0%, #31b0d5 100%);
119 |     background-image: linear-gradient(to bottom, #5bc0de 0%, #31b0d5 100%);
120 |     background-repeat: repeat-x;
121 |     border-color: #2aabd2;
122 |     filter: progid:DXImageTransform.Microsoft.gradient(startColorstr='#ff5bc0de', endColorstr='#ff31b0d5', GradientType=0);
123 | }
124 | 
125 | .btn-info:active,
126 | .btn-info.active {
127 |     background-color: #31b0d5;
128 |     border-color: #2aabd2;
129 | }
130 | 
131 | .thumbnail,
132 | .img-thumbnail {
133 |     -webkit-box-shadow: 0 1px 2px rgba(0, 0, 0, 0.075);
134 |     box-shadow: 0 1px 2px rgba(0, 0, 0, 0.075);
135 | }
136 | 
137 | .dropdown-menu > li > a:hover,
138 | .dropdown-menu > li > a:focus,
139 | .dropdown-menu > .active > a,
140 | .dropdown-menu > .active > a:hover,
141 | .dropdown-menu > .active > a:focus {
142 |     background-color: #357ebd;
143 |     background-image: -webkit-gradient(linear, left 0%, left 100%, from(#428bca), to(#357ebd));
144 |     background-image: -webkit-linear-gradient(top, #428bca, 0%, #357ebd, 100%);
145 |     background-image: -moz-linear-gradient(top, #428bca 0%, #357ebd 100%);
146 |     background-image: linear-gradient(to bottom, #428bca 0%, #357ebd 100%);
147 |     background-repeat: repeat-x;
148 |     filter: progid:DXImageTransform.Microsoft.gradient(startColorstr='#ff428bca', endColorstr='#ff357ebd', GradientType=0);
149 | }
150 | 
151 | .navbar {
152 |     background-image: -webkit-gradient(linear, left 0%, left 100%, from(#ffffff), to(#f8f8f8));
153 |     background-image: -webkit-linear-gradient(top, #ffffff, 0%, #f8f8f8, 100%);
154 |     background-image: -moz-linear-gradient(top, #ffffff 0%, #f8f8f8 100%);
155 |     background-image: linear-gradient(to bottom, #ffffff 0%, #f8f8f8 100%);
156 |     background-repeat: repeat-x;
157 |     border-radius: 4px;
158 |     filter: progid:DXImageTransform.Microsoft.gradient(startColorstr='#ffffffff', endColorstr='#fff8f8f8', GradientType=0);
159 |     -webkit-box-shadow: inset 0 1px 0 rgba(255, 255, 255, 0.15), 0 1px 5px rgba(0, 0, 0, 0.075);
160 |     box-shadow: inset 0 1px 0 rgba(255, 255, 255, 0.15), 0 1px 5px rgba(0, 0, 0, 0.075);
161 | }
162 | 
163 | .navbar .navbar-nav > .active > a {
164 |     background-color: #f8f8f8;
165 | }
166 | 
167 | .navbar-brand,
168 | .navbar-nav > li > a {
169 |     text-shadow: 0 1px 0 rgba(255, 255, 255, 0.25);
170 | }
171 | 
172 | .navbar-inverse {
173 |     background-image: -webkit-gradient(linear, left 0%, left 100%, from(#3c3c3c), to(#222222));
174 |     background-image: -webkit-linear-gradient(top, #3c3c3c, 0%, #222222, 100%);
175 |     background-image: -moz-linear-gradient(top, #3c3c3c 0%, #222222 100%);
176 |     background-image: linear-gradient(to bottom, #3c3c3c 0%, #222222 100%);
177 |     background-repeat: repeat-x;
178 |     filter: progid:DXImageTransform.Microsoft.gradient(startColorstr='#ff3c3c3c', endColorstr='#ff222222', GradientType=0);
179 | }
180 | 
181 | .navbar-inverse .navbar-nav > .active > a {
182 |     background-color: #222222;
183 | }
184 | 
185 | .navbar-inverse .navbar-brand,
186 | .navbar-inverse .navbar-nav > li > a {
187 |     text-shadow: 0 -1px 0 rgba(0, 0, 0, 0.25);
188 | }
189 | 
190 | .navbar-static-top,
191 | .navbar-fixed-top,
192 | .navbar-fixed-bottom {
193 |     border-radius: 0;
194 | }
195 | 
196 | .alert {
197 |     text-shadow: 0 1px 0 rgba(255, 255, 255, 0.2);
198 |     -webkit-box-shadow: inset 0 1px 0 rgba(255, 255, 255, 0.25), 0 1px 2px rgba(0, 0, 0, 0.05);
199 |     box-shadow: inset 0 1px 0 rgba(255, 255, 255, 0.25), 0 1px 2px rgba(0, 0, 0, 0.05);
200 | }
201 | 
202 | .alert-success {
203 |     background-image: -webkit-gradient(linear, left 0%, left 100%, from(#dff0d8), to(#c8e5bc));
204 |     background-image: -webkit-linear-gradient(top, #dff0d8, 0%, #c8e5bc, 100%);
205 |     background-image: -moz-linear-gradient(top, #dff0d8 0%, #c8e5bc 100%);
206 |     background-image: linear-gradient(to bottom, #dff0d8 0%, #c8e5bc 100%);
207 |     background-repeat: repeat-x;
208 |     border-color: #b2dba1;
209 |     filter: progid:DXImageTransform.Microsoft.gradient(startColorstr='#ffdff0d8', endColorstr='#ffc8e5bc', GradientType=0);
210 | }
211 | 
212 | .alert-info {
213 |     background-image: -webkit-gradient(linear, left 0%, left 100%, from(#d9edf7), to(#b9def0));
214 |     background-image: -webkit-linear-gradient(top, #d9edf7, 0%, #b9def0, 100%);
215 |     background-image: -moz-linear-gradient(top, #d9edf7 0%, #b9def0 100%);
216 |     background-image: linear-gradient(to bottom, #d9edf7 0%, #b9def0 100%);
217 |     background-repeat: repeat-x;
218 |     border-color: #9acfea;
219 |     filter: progid:DXImageTransform.Microsoft.gradient(startColorstr='#ffd9edf7', endColorstr='#ffb9def0', GradientType=0);
220 | }
221 | 
222 | .alert-warning {
223 |     background-image: -webkit-gradient(linear, left 0%, left 100%, from(#fcf8e3), to(#f8efc0));
224 |     background-image: -webkit-linear-gradient(top, #fcf8e3, 0%, #f8efc0, 100%);
225 |     background-image: -moz-linear-gradient(top, #fcf8e3 0%, #f8efc0 100%);
226 |     background-image: linear-gradient(to bottom, #fcf8e3 0%, #f8efc0 100%);
227 |     background-repeat: repeat-x;
228 |     border-color: #f5e79e;
229 |     filter: progid:DXImageTransform.Microsoft.gradient(startColorstr='#fffcf8e3', endColorstr='#fff8efc0', GradientType=0);
230 | }
231 | 
232 | .alert-danger {
233 |     background-image: -webkit-gradient(linear, left 0%, left 100%, from(#f2dede), to(#e7c3c3));
234 |     background-image: -webkit-linear-gradient(top, #f2dede, 0%, #e7c3c3, 100%);
235 |     background-image: -moz-linear-gradient(top, #f2dede 0%, #e7c3c3 100%);
236 |     background-image: linear-gradient(to bottom, #f2dede 0%, #e7c3c3 100%);
237 |     background-repeat: repeat-x;
238 |     border-color: #dca7a7;
239 |     filter: progid:DXImageTransform.Microsoft.gradient(startColorstr='#fff2dede', endColorstr='#ffe7c3c3', GradientType=0);
240 | }
241 | 
242 | .progress {
243 |     background-image: -webkit-gradient(linear, left 0%, left 100%, from(#ebebeb), to(#f5f5f5));
244 |     background-image: -webkit-linear-gradient(top, #ebebeb, 0%, #f5f5f5, 100%);
245 |     background-image: -moz-linear-gradient(top, #ebebeb 0%, #f5f5f5 100%);
246 |     background-image: linear-gradient(to bottom, #ebebeb 0%, #f5f5f5 100%);
247 |     background-repeat: repeat-x;
248 |     filter: progid:DXImageTransform.Microsoft.gradient(startColorstr='#ffebebeb', endColorstr='#fff5f5f5', GradientType=0);
249 | }
250 | 
251 | .progress-bar {
252 |     background-image: -webkit-gradient(linear, left 0%, left 100%, from(#428bca), to(#3071a9));
253 |     background-image: -webkit-linear-gradient(top, #428bca, 0%, #3071a9, 100%);
254 |     background-image: -moz-linear-gradient(top, #428bca 0%, #3071a9 100%);
255 |     background-image: linear-gradient(to bottom, #428bca 0%, #3071a9 100%);
256 |     background-repeat: repeat-x;
257 |     filter: progid:DXImageTransform.Microsoft.gradient(startColorstr='#ff428bca', endColorstr='#ff3071a9', GradientType=0);
258 | }
259 | 
260 | .progress-bar-success {
261 |     background-image: -webkit-gradient(linear, left 0%, left 100%, from(#5cb85c), to(#449d44));
262 |     background-image: -webkit-linear-gradient(top, #5cb85c, 0%, #449d44, 100%);
263 |     background-image: -moz-linear-gradient(top, #5cb85c 0%, #449d44 100%);
264 |     background-image: linear-gradient(to bottom, #5cb85c 0%, #449d44 100%);
265 |     background-repeat: repeat-x;
266 |     filter: progid:DXImageTransform.Microsoft.gradient(startColorstr='#ff5cb85c', endColorstr='#ff449d44', GradientType=0);
267 | }
268 | 
269 | .progress-bar-info {
270 |     background-image: -webkit-gradient(linear, left 0%, left 100%, from(#5bc0de), to(#31b0d5));
271 |     background-image: -webkit-linear-gradient(top, #5bc0de, 0%, #31b0d5, 100%);
272 |     background-image: -moz-linear-gradient(top, #5bc0de 0%, #31b0d5 100%);
273 |     background-image: linear-gradient(to bottom, #5bc0de 0%, #31b0d5 100%);
274 |     background-repeat: repeat-x;
275 |     filter: progid:DXImageTransform.Microsoft.gradient(startColorstr='#ff5bc0de', endColorstr='#ff31b0d5', GradientType=0);
276 | }
277 | 
278 | .progress-bar-warning {
279 |     background-image: -webkit-gradient(linear, left 0%, left 100%, from(#f0ad4e), to(#ec971f));
280 |     background-image: -webkit-linear-gradient(top, #f0ad4e, 0%, #ec971f, 100%);
281 |     background-image: -moz-linear-gradient(top, #f0ad4e 0%, #ec971f 100%);
282 |     background-image: linear-gradient(to bottom, #f0ad4e 0%, #ec971f 100%);
283 |     background-repeat: repeat-x;
284 |     filter: progid:DXImageTransform.Microsoft.gradient(startColorstr='#fff0ad4e', endColorstr='#ffec971f', GradientType=0);
285 | }
286 | 
287 | .progress-bar-danger {
288 |     background-image: -webkit-gradient(linear, left 0%, left 100%, from(#d9534f), to(#c9302c));
289 |     background-image: -webkit-linear-gradient(top, #d9534f, 0%, #c9302c, 100%);
290 |     background-image: -moz-linear-gradient(top, #d9534f 0%, #c9302c 100%);
291 |     background-image: linear-gradient(to bottom, #d9534f 0%, #c9302c 100%);
292 |     background-repeat: repeat-x;
293 |     filter: progid:DXImageTransform.Microsoft.gradient(startColorstr='#ffd9534f', endColorstr='#ffc9302c', GradientType=0);
294 | }
295 | 
296 | .list-group {
297 |     border-radius: 4px;
298 |     -webkit-box-shadow: 0 1px 2px rgba(0, 0, 0, 0.075);
299 |     box-shadow: 0 1px 2px rgba(0, 0, 0, 0.075);
300 | }
301 | 
302 | .list-group-item.active,
303 | .list-group-item.active:hover,
304 | .list-group-item.active:focus {
305 |     text-shadow: 0 -1px 0 #3071a9;
306 |     background-image: -webkit-gradient(linear, left 0%, left 100%, from(#428bca), to(#3278b3));
307 |     background-image: -webkit-linear-gradient(top, #428bca, 0%, #3278b3, 100%);
308 |     background-image: -moz-linear-gradient(top, #428bca 0%, #3278b3 100%);
309 |     background-image: linear-gradient(to bottom, #428bca 0%, #3278b3 100%);
310 |     background-repeat: repeat-x;
311 |     border-color: #3278b3;
312 |     filter: progid:DXImageTransform.Microsoft.gradient(startColorstr='#ff428bca', endColorstr='#ff3278b3', GradientType=0);
313 | }
314 | 
315 | .panel {
316 |     -webkit-box-shadow: 0 1px 2px rgba(0, 0, 0, 0.05);
317 |     box-shadow: 0 1px 2px rgba(0, 0, 0, 0.05);
318 | }
319 | 
320 | .panel-default > .panel-heading {
321 |     background-image: -webkit-gradient(linear, left 0%, left 100%, from(#f5f5f5), to(#e8e8e8));
322 |     background-image: -webkit-linear-gradient(top, #f5f5f5, 0%, #e8e8e8, 100%);
323 |     background-image: -moz-linear-gradient(top, #f5f5f5 0%, #e8e8e8 100%);
324 |     background-image: linear-gradient(to bottom, #f5f5f5 0%, #e8e8e8 100%);
325 |     background-repeat: repeat-x;
326 |     filter: progid:DXImageTransform.Microsoft.gradient(startColorstr='#fff5f5f5', endColorstr='#ffe8e8e8', GradientType=0);
327 | }
328 | 
329 | .panel-primary > .panel-heading {
330 |     background-image: -webkit-gradient(linear, left 0%, left 100%, from(#428bca), to(#357ebd));
331 |     background-image: -webkit-linear-gradient(top, #428bca, 0%, #357ebd, 100%);
332 |     background-image: -moz-linear-gradient(top, #428bca 0%, #357ebd 100%);
333 |     background-image: linear-gradient(to bottom, #428bca 0%, #357ebd 100%);
334 |     background-repeat: repeat-x;
335 |     filter: progid:DXImageTransform.Microsoft.gradient(startColorstr='#ff428bca', endColorstr='#ff357ebd', GradientType=0);
336 | }
337 | 
338 | .panel-success > .panel-heading {
339 |     background-image: -webkit-gradient(linear, left 0%, left 100%, from(#dff0d8), to(#d0e9c6));
340 |     background-image: -webkit-linear-gradient(top, #dff0d8, 0%, #d0e9c6, 100%);
341 |     background-image: -moz-linear-gradient(top, #dff0d8 0%, #d0e9c6 100%);
342 |     background-image: linear-gradient(to bottom, #dff0d8 0%, #d0e9c6 100%);
343 |     background-repeat: repeat-x;
344 |     filter: progid:DXImageTransform.Microsoft.gradient(startColorstr='#ffdff0d8', endColorstr='#ffd0e9c6', GradientType=0);
345 | }
346 | 
347 | .panel-info > .panel-heading {
348 |     background-image: -webkit-gradient(linear, left 0%, left 100%, from(#d9edf7), to(#c4e3f3));
349 |     background-image: -webkit-linear-gradient(top, #d9edf7, 0%, #c4e3f3, 100%);
350 |     background-image: -moz-linear-gradient(top, #d9edf7 0%, #c4e3f3 100%);
351 |     background-image: linear-gradient(to bottom, #d9edf7 0%, #c4e3f3 100%);
352 |     background-repeat: repeat-x;
353 |     filter: progid:DXImageTransform.Microsoft.gradient(startColorstr='#ffd9edf7', endColorstr='#ffc4e3f3', GradientType=0);
354 | }
355 | 
356 | .panel-warning > .panel-heading {
357 |     background-image: -webkit-gradient(linear, left 0%, left 100%, from(#fcf8e3), to(#faf2cc));
358 |     background-image: -webkit-linear-gradient(top, #fcf8e3, 0%, #faf2cc, 100%);
359 |     background-image: -moz-linear-gradient(top, #fcf8e3 0%, #faf2cc 100%);
360 |     background-image: linear-gradient(to bottom, #fcf8e3 0%, #faf2cc 100%);
361 |     background-repeat: repeat-x;
362 |     filter: progid:DXImageTransform.Microsoft.gradient(startColorstr='#fffcf8e3', endColorstr='#fffaf2cc', GradientType=0);
363 | }
364 | 
365 | .panel-danger > .panel-heading {
366 |     background-image: -webkit-gradient(linear, left 0%, left 100%, from(#f2dede), to(#ebcccc));
367 |     background-image: -webkit-linear-gradient(top, #f2dede, 0%, #ebcccc, 100%);
368 |     background-image: -moz-linear-gradient(top, #f2dede 0%, #ebcccc 100%);
369 |     background-image: linear-gradient(to bottom, #f2dede 0%, #ebcccc 100%);
370 |     background-repeat: repeat-x;
371 |     filter: progid:DXImageTransform.Microsoft.gradient(startColorstr='#fff2dede', endColorstr='#ffebcccc', GradientType=0);
372 | }
373 | 
374 | .well {
375 |     background-image: -webkit-gradient(linear, left 0%, left 100%, from(#e8e8e8), to(#f5f5f5));
376 |     background-image: -webkit-linear-gradient(top, #e8e8e8, 0%, #f5f5f5, 100%);
377 |     background-image: -moz-linear-gradient(top, #e8e8e8 0%, #f5f5f5 100%);
378 |     background-image: linear-gradient(to bottom, #e8e8e8 0%, #f5f5f5 100%);
379 |     background-repeat: repeat-x;
380 |     border-color: #dcdcdc;
381 |     filter: progid:DXImageTransform.Microsoft.gradient(startColorstr='#ffe8e8e8', endColorstr='#fff5f5f5', GradientType=0);
382 |     -webkit-box-shadow: inset 0 1px 3px rgba(0, 0, 0, 0.05), 0 1px 0 rgba(255, 255, 255, 0.1);
383 |     box-shadow: inset 0 1px 3px rgba(0, 0, 0, 0.05), 0 1px 0 rgba(255, 255, 255, 0.1);
384 | }


--------------------------------------------------------------------------------
/src/service_provider/static/bootstrap/css/bootstrap-theme.min.css:
--------------------------------------------------------------------------------
  1 | .btn-default, .btn-primary, .btn-success, .btn-info, .btn-warning, .btn-danger {
  2 |     text-shadow: 0 -1px 0 rgba(0, 0, 0, 0.2);
  3 |     -webkit-box-shadow: inset 0 1px 0 rgba(255, 255, 255, 0.15), 0 1px 1px rgba(0, 0, 0, 0.075);
  4 |     box-shadow: inset 0 1px 0 rgba(255, 255, 255, 0.15), 0 1px 1px rgba(0, 0, 0, 0.075)
  5 | }
  6 | 
  7 | .btn-default:active, .btn-primary:active, .btn-success:active, .btn-info:active, .btn-warning:active, .btn-danger:active, .btn-default.active, .btn-primary.active, .btn-success.active, .btn-info.active, .btn-warning.active, .btn-danger.active {
  8 |     -webkit-box-shadow: inset 0 3px 5px rgba(0, 0, 0, 0.125);
  9 |     box-shadow: inset 0 3px 5px rgba(0, 0, 0, 0.125)
 10 | }
 11 | 
 12 | .btn:active, .btn.active {
 13 |     background-image: none
 14 | }
 15 | 
 16 | .btn-default {
 17 |     text-shadow: 0 1px 0 #fff;
 18 |     background-image: -webkit-gradient(linear, left 0, left 100%, from(#fff), to(#e6e6e6));
 19 |     background-image: -webkit-linear-gradient(top, #fff, 0%, #e6e6e6, 100%);
 20 |     background-image: -moz-linear-gradient(top, #fff 0, #e6e6e6 100%);
 21 |     background-image: linear-gradient(to bottom, #fff 0, #e6e6e6 100%);
 22 |     background-repeat: repeat-x;
 23 |     border-color: #e0e0e0;
 24 |     border-color: #ccc;
 25 |     filter: progid:DXImageTransform.Microsoft.gradient(startColorstr='#ffffffff', endColorstr='#ffe6e6e6', GradientType=0)
 26 | }
 27 | 
 28 | .btn-default:active, .btn-default.active {
 29 |     background-color: #e6e6e6;
 30 |     border-color: #e0e0e0
 31 | }
 32 | 
 33 | .btn-primary {
 34 |     background-image: -webkit-gradient(linear, left 0, left 100%, from(#428bca), to(#3071a9));
 35 |     background-image: -webkit-linear-gradient(top, #428bca, 0%, #3071a9, 100%);
 36 |     background-image: -moz-linear-gradient(top, #428bca 0, #3071a9 100%);
 37 |     background-image: linear-gradient(to bottom, #428bca 0, #3071a9 100%);
 38 |     background-repeat: repeat-x;
 39 |     border-color: #2d6ca2;
 40 |     filter: progid:DXImageTransform.Microsoft.gradient(startColorstr='#ff428bca', endColorstr='#ff3071a9', GradientType=0)
 41 | }
 42 | 
 43 | .btn-primary:active, .btn-primary.active {
 44 |     background-color: #3071a9;
 45 |     border-color: #2d6ca2
 46 | }
 47 | 
 48 | .btn-success {
 49 |     background-image: -webkit-gradient(linear, left 0, left 100%, from(#5cb85c), to(#449d44));
 50 |     background-image: -webkit-linear-gradient(top, #5cb85c, 0%, #449d44, 100%);
 51 |     background-image: -moz-linear-gradient(top, #5cb85c 0, #449d44 100%);
 52 |     background-image: linear-gradient(to bottom, #5cb85c 0, #449d44 100%);
 53 |     background-repeat: repeat-x;
 54 |     border-color: #419641;
 55 |     filter: progid:DXImageTransform.Microsoft.gradient(startColorstr='#ff5cb85c', endColorstr='#ff449d44', GradientType=0)
 56 | }
 57 | 
 58 | .btn-success:active, .btn-success.active {
 59 |     background-color: #449d44;
 60 |     border-color: #419641
 61 | }
 62 | 
 63 | .btn-warning {
 64 |     background-image: -webkit-gradient(linear, left 0, left 100%, from(#f0ad4e), to(#ec971f));
 65 |     background-image: -webkit-linear-gradient(top, #f0ad4e, 0%, #ec971f, 100%);
 66 |     background-image: -moz-linear-gradient(top, #f0ad4e 0, #ec971f 100%);
 67 |     background-image: linear-gradient(to bottom, #f0ad4e 0, #ec971f 100%);
 68 |     background-repeat: repeat-x;
 69 |     border-color: #eb9316;
 70 |     filter: progid:DXImageTransform.Microsoft.gradient(startColorstr='#fff0ad4e', endColorstr='#ffec971f', GradientType=0)
 71 | }
 72 | 
 73 | .btn-warning:active, .btn-warning.active {
 74 |     background-color: #ec971f;
 75 |     border-color: #eb9316
 76 | }
 77 | 
 78 | .btn-danger {
 79 |     background-image: -webkit-gradient(linear, left 0, left 100%, from(#d9534f), to(#c9302c));
 80 |     background-image: -webkit-linear-gradient(top, #d9534f, 0%, #c9302c, 100%);
 81 |     background-image: -moz-linear-gradient(top, #d9534f 0, #c9302c 100%);
 82 |     background-image: linear-gradient(to bottom, #d9534f 0, #c9302c 100%);
 83 |     background-repeat: repeat-x;
 84 |     border-color: #c12e2a;
 85 |     filter: progid:DXImageTransform.Microsoft.gradient(startColorstr='#ffd9534f', endColorstr='#ffc9302c', GradientType=0)
 86 | }
 87 | 
 88 | .btn-danger:active, .btn-danger.active {
 89 |     background-color: #c9302c;
 90 |     border-color: #c12e2a
 91 | }
 92 | 
 93 | .btn-info {
 94 |     background-image: -webkit-gradient(linear, left 0, left 100%, from(#5bc0de), to(#31b0d5));
 95 |     background-image: -webkit-linear-gradient(top, #5bc0de, 0%, #31b0d5, 100%);
 96 |     background-image: -moz-linear-gradient(top, #5bc0de 0, #31b0d5 100%);
 97 |     background-image: linear-gradient(to bottom, #5bc0de 0, #31b0d5 100%);
 98 |     background-repeat: repeat-x;
 99 |     border-color: #2aabd2;
100 |     filter: progid:DXImageTransform.Microsoft.gradient(startColorstr='#ff5bc0de', endColorstr='#ff31b0d5', GradientType=0)
101 | }
102 | 
103 | .btn-info:active, .btn-info.active {
104 |     background-color: #31b0d5;
105 |     border-color: #2aabd2
106 | }
107 | 
108 | .thumbnail, .img-thumbnail {
109 |     -webkit-box-shadow: 0 1px 2px rgba(0, 0, 0, 0.075);
110 |     box-shadow: 0 1px 2px rgba(0, 0, 0, 0.075)
111 | }
112 | 
113 | .dropdown-menu > li > a:hover, .dropdown-menu > li > a:focus, .dropdown-menu > .active > a, .dropdown-menu > .active > a:hover, .dropdown-menu > .active > a:focus {
114 |     background-color: #357ebd;
115 |     background-image: -webkit-gradient(linear, left 0, left 100%, from(#428bca), to(#357ebd));
116 |     background-image: -webkit-linear-gradient(top, #428bca, 0%, #357ebd, 100%);
117 |     background-image: -moz-linear-gradient(top, #428bca 0, #357ebd 100%);
118 |     background-image: linear-gradient(to bottom, #428bca 0, #357ebd 100%);
119 |     background-repeat: repeat-x;
120 |     filter: progid:DXImageTransform.Microsoft.gradient(startColorstr='#ff428bca', endColorstr='#ff357ebd', GradientType=0)
121 | }
122 | 
123 | .navbar {
124 |     background-image: -webkit-gradient(linear, left 0, left 100%, from(#fff), to(#f8f8f8));
125 |     background-image: -webkit-linear-gradient(top, #fff, 0%, #f8f8f8, 100%);
126 |     background-image: -moz-linear-gradient(top, #fff 0, #f8f8f8 100%);
127 |     background-image: linear-gradient(to bottom, #fff 0, #f8f8f8 100%);
128 |     background-repeat: repeat-x;
129 |     border-radius: 4px;
130 |     filter: progid:DXImageTransform.Microsoft.gradient(startColorstr='#ffffffff', endColorstr='#fff8f8f8', GradientType=0);
131 |     -webkit-box-shadow: inset 0 1px 0 rgba(255, 255, 255, 0.15), 0 1px 5px rgba(0, 0, 0, 0.075);
132 |     box-shadow: inset 0 1px 0 rgba(255, 255, 255, 0.15), 0 1px 5px rgba(0, 0, 0, 0.075)
133 | }
134 | 
135 | .navbar .navbar-nav > .active > a {
136 |     background-color: #f8f8f8
137 | }
138 | 
139 | .navbar-brand, .navbar-nav > li > a {
140 |     text-shadow: 0 1px 0 rgba(255, 255, 255, 0.25)
141 | }
142 | 
143 | .navbar-inverse {
144 |     background-image: -webkit-gradient(linear, left 0, left 100%, from(#3c3c3c), to(#222));
145 |     background-image: -webkit-linear-gradient(top, #3c3c3c, 0%, #222, 100%);
146 |     background-image: -moz-linear-gradient(top, #3c3c3c 0, #222 100%);
147 |     background-image: linear-gradient(to bottom, #3c3c3c 0, #222 100%);
148 |     background-repeat: repeat-x;
149 |     filter: progid:DXImageTransform.Microsoft.gradient(startColorstr='#ff3c3c3c', endColorstr='#ff222222', GradientType=0)
150 | }
151 | 
152 | .navbar-inverse .navbar-nav > .active > a {
153 |     background-color: #222
154 | }
155 | 
156 | .navbar-inverse .navbar-brand, .navbar-inverse .navbar-nav > li > a {
157 |     text-shadow: 0 -1px 0 rgba(0, 0, 0, 0.25)
158 | }
159 | 
160 | .navbar-static-top, .navbar-fixed-top, .navbar-fixed-bottom {
161 |     border-radius: 0
162 | }
163 | 
164 | .alert {
165 |     text-shadow: 0 1px 0 rgba(255, 255, 255, 0.2);
166 |     -webkit-box-shadow: inset 0 1px 0 rgba(255, 255, 255, 0.25), 0 1px 2px rgba(0, 0, 0, 0.05);
167 |     box-shadow: inset 0 1px 0 rgba(255, 255, 255, 0.25), 0 1px 2px rgba(0, 0, 0, 0.05)
168 | }
169 | 
170 | .alert-success {
171 |     background-image: -webkit-gradient(linear, left 0, left 100%, from(#dff0d8), to(#c8e5bc));
172 |     background-image: -webkit-linear-gradient(top, #dff0d8, 0%, #c8e5bc, 100%);
173 |     background-image: -moz-linear-gradient(top, #dff0d8 0, #c8e5bc 100%);
174 |     background-image: linear-gradient(to bottom, #dff0d8 0, #c8e5bc 100%);
175 |     background-repeat: repeat-x;
176 |     border-color: #b2dba1;
177 |     filter: progid:DXImageTransform.Microsoft.gradient(startColorstr='#ffdff0d8', endColorstr='#ffc8e5bc', GradientType=0)
178 | }
179 | 
180 | .alert-info {
181 |     background-image: -webkit-gradient(linear, left 0, left 100%, from(#d9edf7), to(#b9def0));
182 |     background-image: -webkit-linear-gradient(top, #d9edf7, 0%, #b9def0, 100%);
183 |     background-image: -moz-linear-gradient(top, #d9edf7 0, #b9def0 100%);
184 |     background-image: linear-gradient(to bottom, #d9edf7 0, #b9def0 100%);
185 |     background-repeat: repeat-x;
186 |     border-color: #9acfea;
187 |     filter: progid:DXImageTransform.Microsoft.gradient(startColorstr='#ffd9edf7', endColorstr='#ffb9def0', GradientType=0)
188 | }
189 | 
190 | .alert-warning {
191 |     background-image: -webkit-gradient(linear, left 0, left 100%, from(#fcf8e3), to(#f8efc0));
192 |     background-image: -webkit-linear-gradient(top, #fcf8e3, 0%, #f8efc0, 100%);
193 |     background-image: -moz-linear-gradient(top, #fcf8e3 0, #f8efc0 100%);
194 |     background-image: linear-gradient(to bottom, #fcf8e3 0, #f8efc0 100%);
195 |     background-repeat: repeat-x;
196 |     border-color: #f5e79e;
197 |     filter: progid:DXImageTransform.Microsoft.gradient(startColorstr='#fffcf8e3', endColorstr='#fff8efc0', GradientType=0)
198 | }
199 | 
200 | .alert-danger {
201 |     background-image: -webkit-gradient(linear, left 0, left 100%, from(#f2dede), to(#e7c3c3));
202 |     background-image: -webkit-linear-gradient(top, #f2dede, 0%, #e7c3c3, 100%);
203 |     background-image: -moz-linear-gradient(top, #f2dede 0, #e7c3c3 100%);
204 |     background-image: linear-gradient(to bottom, #f2dede 0, #e7c3c3 100%);
205 |     background-repeat: repeat-x;
206 |     border-color: #dca7a7;
207 |     filter: progid:DXImageTransform.Microsoft.gradient(startColorstr='#fff2dede', endColorstr='#ffe7c3c3', GradientType=0)
208 | }
209 | 
210 | .progress {
211 |     background-image: -webkit-gradient(linear, left 0, left 100%, from(#ebebeb), to(#f5f5f5));
212 |     background-image: -webkit-linear-gradient(top, #ebebeb, 0%, #f5f5f5, 100%);
213 |     background-image: -moz-linear-gradient(top, #ebebeb 0, #f5f5f5 100%);
214 |     background-image: linear-gradient(to bottom, #ebebeb 0, #f5f5f5 100%);
215 |     background-repeat: repeat-x;
216 |     filter: progid:DXImageTransform.Microsoft.gradient(startColorstr='#ffebebeb', endColorstr='#fff5f5f5', GradientType=0)
217 | }
218 | 
219 | .progress-bar {
220 |     background-image: -webkit-gradient(linear, left 0, left 100%, from(#428bca), to(#3071a9));
221 |     background-image: -webkit-linear-gradient(top, #428bca, 0%, #3071a9, 100%);
222 |     background-image: -moz-linear-gradient(top, #428bca 0, #3071a9 100%);
223 |     background-image: linear-gradient(to bottom, #428bca 0, #3071a9 100%);
224 |     background-repeat: repeat-x;
225 |     filter: progid:DXImageTransform.Microsoft.gradient(startColorstr='#ff428bca', endColorstr='#ff3071a9', GradientType=0)
226 | }
227 | 
228 | .progress-bar-success {
229 |     background-image: -webkit-gradient(linear, left 0, left 100%, from(#5cb85c), to(#449d44));
230 |     background-image: -webkit-linear-gradient(top, #5cb85c, 0%, #449d44, 100%);
231 |     background-image: -moz-linear-gradient(top, #5cb85c 0, #449d44 100%);
232 |     background-image: linear-gradient(to bottom, #5cb85c 0, #449d44 100%);
233 |     background-repeat: repeat-x;
234 |     filter: progid:DXImageTransform.Microsoft.gradient(startColorstr='#ff5cb85c', endColorstr='#ff449d44', GradientType=0)
235 | }
236 | 
237 | .progress-bar-info {
238 |     background-image: -webkit-gradient(linear, left 0, left 100%, from(#5bc0de), to(#31b0d5));
239 |     background-image: -webkit-linear-gradient(top, #5bc0de, 0%, #31b0d5, 100%);
240 |     background-image: -moz-linear-gradient(top, #5bc0de 0, #31b0d5 100%);
241 |     background-image: linear-gradient(to bottom, #5bc0de 0, #31b0d5 100%);
242 |     background-repeat: repeat-x;
243 |     filter: progid:DXImageTransform.Microsoft.gradient(startColorstr='#ff5bc0de', endColorstr='#ff31b0d5', GradientType=0)
244 | }
245 | 
246 | .progress-bar-warning {
247 |     background-image: -webkit-gradient(linear, left 0, left 100%, from(#f0ad4e), to(#ec971f));
248 |     background-image: -webkit-linear-gradient(top, #f0ad4e, 0%, #ec971f, 100%);
249 |     background-image: -moz-linear-gradient(top, #f0ad4e 0, #ec971f 100%);
250 |     background-image: linear-gradient(to bottom, #f0ad4e 0, #ec971f 100%);
251 |     background-repeat: repeat-x;
252 |     filter: progid:DXImageTransform.Microsoft.gradient(startColorstr='#fff0ad4e', endColorstr='#ffec971f', GradientType=0)
253 | }
254 | 
255 | .progress-bar-danger {
256 |     background-image: -webkit-gradient(linear, left 0, left 100%, from(#d9534f), to(#c9302c));
257 |     background-image: -webkit-linear-gradient(top, #d9534f, 0%, #c9302c, 100%);
258 |     background-image: -moz-linear-gradient(top, #d9534f 0, #c9302c 100%);
259 |     background-image: linear-gradient(to bottom, #d9534f 0, #c9302c 100%);
260 |     background-repeat: repeat-x;
261 |     filter: progid:DXImageTransform.Microsoft.gradient(startColorstr='#ffd9534f', endColorstr='#ffc9302c', GradientType=0)
262 | }
263 | 
264 | .list-group {
265 |     border-radius: 4px;
266 |     -webkit-box-shadow: 0 1px 2px rgba(0, 0, 0, 0.075);
267 |     box-shadow: 0 1px 2px rgba(0, 0, 0, 0.075)
268 | }
269 | 
270 | .list-group-item.active, .list-group-item.active:hover, .list-group-item.active:focus {
271 |     text-shadow: 0 -1px 0 #3071a9;
272 |     background-image: -webkit-gradient(linear, left 0, left 100%, from(#428bca), to(#3278b3));
273 |     background-image: -webkit-linear-gradient(top, #428bca, 0%, #3278b3, 100%);
274 |     background-image: -moz-linear-gradient(top, #428bca 0, #3278b3 100%);
275 |     background-image: linear-gradient(to bottom, #428bca 0, #3278b3 100%);
276 |     background-repeat: repeat-x;
277 |     border-color: #3278b3;
278 |     filter: progid:DXImageTransform.Microsoft.gradient(startColorstr='#ff428bca', endColorstr='#ff3278b3', GradientType=0)
279 | }
280 | 
281 | .panel {
282 |     -webkit-box-shadow: 0 1px 2px rgba(0, 0, 0, 0.05);
283 |     box-shadow: 0 1px 2px rgba(0, 0, 0, 0.05)
284 | }
285 | 
286 | .panel-default > .panel-heading {
287 |     background-image: -webkit-gradient(linear, left 0, left 100%, from(#f5f5f5), to(#e8e8e8));
288 |     background-image: -webkit-linear-gradient(top, #f5f5f5, 0%, #e8e8e8, 100%);
289 |     background-image: -moz-linear-gradient(top, #f5f5f5 0, #e8e8e8 100%);
290 |     background-image: linear-gradient(to bottom, #f5f5f5 0, #e8e8e8 100%);
291 |     background-repeat: repeat-x;
292 |     filter: progid:DXImageTransform.Microsoft.gradient(startColorstr='#fff5f5f5', endColorstr='#ffe8e8e8', GradientType=0)
293 | }
294 | 
295 | .panel-primary > .panel-heading {
296 |     background-image: -webkit-gradient(linear, left 0, left 100%, from(#428bca), to(#357ebd));
297 |     background-image: -webkit-linear-gradient(top, #428bca, 0%, #357ebd, 100%);
298 |     background-image: -moz-linear-gradient(top, #428bca 0, #357ebd 100%);
299 |     background-image: linear-gradient(to bottom, #428bca 0, #357ebd 100%);
300 |     background-repeat: repeat-x;
301 |     filter: progid:DXImageTransform.Microsoft.gradient(startColorstr='#ff428bca', endColorstr='#ff357ebd', GradientType=0)
302 | }
303 | 
304 | .panel-success > .panel-heading {
305 |     background-image: -webkit-gradient(linear, left 0, left 100%, from(#dff0d8), to(#d0e9c6));
306 |     background-image: -webkit-linear-gradient(top, #dff0d8, 0%, #d0e9c6, 100%);
307 |     background-image: -moz-linear-gradient(top, #dff0d8 0, #d0e9c6 100%);
308 |     background-image: linear-gradient(to bottom, #dff0d8 0, #d0e9c6 100%);
309 |     background-repeat: repeat-x;
310 |     filter: progid:DXImageTransform.Microsoft.gradient(startColorstr='#ffdff0d8', endColorstr='#ffd0e9c6', GradientType=0)
311 | }
312 | 
313 | .panel-info > .panel-heading {
314 |     background-image: -webkit-gradient(linear, left 0, left 100%, from(#d9edf7), to(#c4e3f3));
315 |     background-image: -webkit-linear-gradient(top, #d9edf7, 0%, #c4e3f3, 100%);
316 |     background-image: -moz-linear-gradient(top, #d9edf7 0, #c4e3f3 100%);
317 |     background-image: linear-gradient(to bottom, #d9edf7 0, #c4e3f3 100%);
318 |     background-repeat: repeat-x;
319 |     filter: progid:DXImageTransform.Microsoft.gradient(startColorstr='#ffd9edf7', endColorstr='#ffc4e3f3', GradientType=0)
320 | }
321 | 
322 | .panel-warning > .panel-heading {
323 |     background-image: -webkit-gradient(linear, left 0, left 100%, from(#fcf8e3), to(#faf2cc));
324 |     background-image: -webkit-linear-gradient(top, #fcf8e3, 0%, #faf2cc, 100%);
325 |     background-image: -moz-linear-gradient(top, #fcf8e3 0, #faf2cc 100%);
326 |     background-image: linear-gradient(to bottom, #fcf8e3 0, #faf2cc 100%);
327 |     background-repeat: repeat-x;
328 |     filter: progid:DXImageTransform.Microsoft.gradient(startColorstr='#fffcf8e3', endColorstr='#fffaf2cc', GradientType=0)
329 | }
330 | 
331 | .panel-danger > .panel-heading {
332 |     background-image: -webkit-gradient(linear, left 0, left 100%, from(#f2dede), to(#ebcccc));
333 |     background-image: -webkit-linear-gradient(top, #f2dede, 0%, #ebcccc, 100%);
334 |     background-image: -moz-linear-gradient(top, #f2dede 0, #ebcccc 100%);
335 |     background-image: linear-gradient(to bottom, #f2dede 0, #ebcccc 100%);
336 |     background-repeat: repeat-x;
337 |     filter: progid:DXImageTransform.Microsoft.gradient(startColorstr='#fff2dede', endColorstr='#ffebcccc', GradientType=0)
338 | }
339 | 
340 | .well {
341 |     background-image: -webkit-gradient(linear, left 0, left 100%, from(#e8e8e8), to(#f5f5f5));
342 |     background-image: -webkit-linear-gradient(top, #e8e8e8, 0%, #f5f5f5, 100%);
343 |     background-image: -moz-linear-gradient(top, #e8e8e8 0, #f5f5f5 100%);
344 |     background-image: linear-gradient(to bottom, #e8e8e8 0, #f5f5f5 100%);
345 |     background-repeat: repeat-x;
346 |     border-color: #dcdcdc;
347 |     filter: progid:DXImageTransform.Microsoft.gradient(startColorstr='#ffe8e8e8', endColorstr='#fff5f5f5', GradientType=0);
348 |     -webkit-box-shadow: inset 0 1px 3px rgba(0, 0, 0, 0.05), 0 1px 0 rgba(255, 255, 255, 0.1);
349 |     box-shadow: inset 0 1px 3px rgba(0, 0, 0, 0.05), 0 1px 0 rgba(255, 255, 255, 0.1)
350 | }


--------------------------------------------------------------------------------
/src/service_provider/static/bootstrap/fonts/glyphicons-halflings-regular.eot:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/its-dirg/non-web-oidc/8f5406f7a3148fd6a057a0ee4fb0ca35892e0c9c/src/service_provider/static/bootstrap/fonts/glyphicons-halflings-regular.eot


--------------------------------------------------------------------------------
/src/service_provider/static/bootstrap/fonts/glyphicons-halflings-regular.svg:
--------------------------------------------------------------------------------
  1 | <?xml version="1.0" standalone="no"?>
  2 | <!DOCTYPE svg PUBLIC "-//W3C//DTD SVG 1.1//EN" "http://www.w3.org/Graphics/SVG/1.1/DTD/svg11.dtd" >
  3 | <svg xmlns="http://www.w3.org/2000/svg">
  4 | <metadata></metadata>
  5 | <defs>
  6 | <font id="glyphicons_halflingsregular" horiz-adv-x="1200" >
  7 | <font-face units-per-em="1200" ascent="960" descent="-240" />
  8 | <missing-glyph horiz-adv-x="500" />
  9 | <glyph />
 10 | <glyph />
 11 | <glyph unicode=" " />
 12 | <glyph unicode="*" d="M1100 500h-259l183 -183l-141 -141l-183 183v-259h-200v259l-183 -183l-141 141l183 183h-259v200h259l-183 183l141 141l183 -183v259h200v-259l183 183l141 -141l-183 -183h259v-200z" />
 13 | <glyph unicode="+" d="M1100 400h-400v-400h-300v400h-400v300h400v400h300v-400h400v-300z" />
 14 | <glyph unicode="&#xa0;" />
 15 | <glyph unicode="&#x2000;" horiz-adv-x="652" />
 16 | <glyph unicode="&#x2001;" horiz-adv-x="1304" />
 17 | <glyph unicode="&#x2002;" horiz-adv-x="652" />
 18 | <glyph unicode="&#x2003;" horiz-adv-x="1304" />
 19 | <glyph unicode="&#x2004;" horiz-adv-x="434" />
 20 | <glyph unicode="&#x2005;" horiz-adv-x="326" />
 21 | <glyph unicode="&#x2006;" horiz-adv-x="217" />
 22 | <glyph unicode="&#x2007;" horiz-adv-x="217" />
 23 | <glyph unicode="&#x2008;" horiz-adv-x="163" />
 24 | <glyph unicode="&#x2009;" horiz-adv-x="260" />
 25 | <glyph unicode="&#x200a;" horiz-adv-x="72" />
 26 | <glyph unicode="&#x202f;" horiz-adv-x="260" />
 27 | <glyph unicode="&#x205f;" horiz-adv-x="326" />
 28 | <glyph unicode="&#x20ac;" d="M800 500h-300q9 -74 33 -132t52.5 -91t62 -54.5t59 -29t46.5 -7.5q29 0 66 13t75 37t63.5 67.5t25.5 96.5h174q-31 -172 -128 -278q-107 -117 -274 -117q-205 0 -324 158q-36 46 -69 131.5t-45 205.5h-217l100 100h113q0 47 5 100h-218l100 100h135q37 167 112 257 q117 141 297 141q242 0 354 -189q60 -103 66 -209h-181q0 55 -25.5 99t-63.5 68t-75 36.5t-67 12.5q-24 0 -52.5 -10t-62.5 -32t-65.5 -67t-50.5 -107h379l-100 -100h-300q-6 -46 -6 -100h406z" />
 29 | <glyph unicode="&#x2212;" d="M1100 700h-900v-300h900v300z" />
 30 | <glyph unicode="&#x2601;" d="M178 300h750q120 0 205 86t85 208q0 120 -85 206.5t-205 86.5q-46 0 -90 -14q-44 97 -134.5 156.5t-200.5 59.5q-152 0 -260 -107.5t-108 -260.5q0 -25 2 -37q-66 -14 -108.5 -67.5t-42.5 -122.5q0 -80 56.5 -137t135.5 -57z" />
 31 | <glyph unicode="&#x2709;" d="M1200 1100h-1200l600 -603zM300 600l-300 -300v600zM1200 900v-600l-300 300zM800 500l400 -400h-1200l400 400l200 -200z" />
 32 | <glyph unicode="&#x270f;" d="M1101 889l99 92q13 13 13 32.5t-13 33.5l-153 153q-15 13 -33 13t-33 -13l-94 -97zM401 189l614 614l-214 214l-614 -614zM-13 -13l333 112l-223 223z" />
 33 | <glyph unicode="&#xe000;" horiz-adv-x="500" d="M0 0z" />
 34 | <glyph unicode="&#xe001;" d="M700 100h300v-100h-800v100h300v550l-500 550h1200l-500 -550v-550z" />
 35 | <glyph unicode="&#xe002;" d="M1000 934v-521q-64 16 -138 -7q-79 -26 -122.5 -83t-25.5 -111q17 -55 85.5 -75.5t147.5 4.5q70 23 111.5 63.5t41.5 95.5v881q0 10 -7 15.5t-17 2.5l-752 -193q-10 -3 -17 -12.5t-7 -19.5v-689q-64 17 -138 -7q-79 -25 -122.5 -82t-25.5 -112t86 -75.5t147 5.5 q65 21 109 69t44 90v606z" />
 36 | <glyph unicode="&#xe003;" d="M913 432l300 -300q7 -8 7 -18t-7 -18l-109 -109q-8 -7 -18 -7t-18 7l-300 300q-119 -78 -261 -78q-200 0 -342 142t-142 342t142 342t342 142t342 -142t142 -342q0 -142 -78 -261zM176 693q0 -136 97 -233t234 -97t233.5 96.5t96.5 233.5t-96.5 233.5t-233.5 96.5 t-234 -97t-97 -233z" />
 37 | <glyph unicode="&#xe005;" d="M649 949q48 69 109.5 105t121.5 38t118.5 -20.5t102.5 -64t71 -100.5t27 -123q0 -57 -33.5 -117.5t-94 -124.5t-126.5 -127.5t-150 -152.5t-146 -174q-62 85 -145.5 174t-149.5 152.5t-126.5 127.5t-94 124.5t-33.5 117.5q0 64 28 123t73 100.5t104.5 64t119 20.5 t120 -38.5t104.5 -104.5z" />
 38 | <glyph unicode="&#xe006;" d="M791 522l145 -449l-384 275l-382 -275l146 447l-388 280h479l146 400h2l146 -400h472zM168 71l2 1z" />
 39 | <glyph unicode="&#xe007;" d="M791 522l145 -449l-384 275l-382 -275l146 447l-388 280h479l146 400h2l146 -400h472zM747 331l-74 229l193 140h-235l-77 211l-78 -211h-239l196 -142l-73 -226l192 140zM168 71l2 1z" />
 40 | <glyph unicode="&#xe008;" d="M1200 143v-143h-1200v143l400 257v100q-37 0 -68.5 74.5t-31.5 125.5v200q0 124 88 212t212 88t212 -88t88 -212v-200q0 -51 -31.5 -125.5t-68.5 -74.5v-100z" />
 41 | <glyph unicode="&#xe009;" d="M1200 1100v-1100h-1200v1100h1200zM200 1000h-100v-100h100v100zM900 1000h-600v-400h600v400zM1100 1000h-100v-100h100v100zM200 800h-100v-100h100v100zM1100 800h-100v-100h100v100zM200 600h-100v-100h100v100zM1100 600h-100v-100h100v100zM900 500h-600v-400h600 v400zM200 400h-100v-100h100v100zM1100 400h-100v-100h100v100zM200 200h-100v-100h100v100zM1100 200h-100v-100h100v100z" />
 42 | <glyph unicode="&#xe010;" d="M500 1050v-400q0 -21 -14.5 -35.5t-35.5 -14.5h-400q-21 0 -35.5 14.5t-14.5 35.5v400q0 21 14.5 35.5t35.5 14.5h400q21 0 35.5 -14.5t14.5 -35.5zM1100 1050v-400q0 -21 -14.5 -35.5t-35.5 -14.5h-400q-21 0 -35.5 14.5t-14.5 35.5v400q0 21 14.5 35.5t35.5 14.5h400 q21 0 35.5 -14.5t14.5 -35.5zM500 450v-400q0 -21 -14.5 -35.5t-35.5 -14.5h-400q-21 0 -35.5 14.5t-14.5 35.5v400q0 21 14.5 35.5t35.5 14.5h400q21 0 35.5 -14.5t14.5 -35.5zM1100 450v-400q0 -21 -14.5 -35.5t-35.5 -14.5h-400q-21 0 -35.5 14.5t-14.5 35.5v400 q0 21 14.5 35.5t35.5 14.5h400q21 0 35.5 -14.5t14.5 -35.5z" />
 43 | <glyph unicode="&#xe011;" d="M300 1050v-200q0 -21 -14.5 -35.5t-35.5 -14.5h-200q-21 0 -35.5 14.5t-14.5 35.5v200q0 21 14.5 35.5t35.5 14.5h200q21 0 35.5 -14.5t14.5 -35.5zM700 1050v-200q0 -21 -14.5 -35.5t-35.5 -14.5h-200q-21 0 -35.5 14.5t-14.5 35.5v200q0 21 14.5 35.5t35.5 14.5h200 q21 0 35.5 -14.5t14.5 -35.5zM1100 1050v-200q0 -21 -14.5 -35.5t-35.5 -14.5h-200q-21 0 -35.5 14.5t-14.5 35.5v200q0 21 14.5 35.5t35.5 14.5h200q21 0 35.5 -14.5t14.5 -35.5zM300 650v-200q0 -21 -14.5 -35.5t-35.5 -14.5h-200q-21 0 -35.5 14.5t-14.5 35.5v200 q0 21 14.5 35.5t35.5 14.5h200q21 0 35.5 -14.5t14.5 -35.5zM700 650v-200q0 -21 -14.5 -35.5t-35.5 -14.5h-200q-21 0 -35.5 14.5t-14.5 35.5v200q0 21 14.5 35.5t35.5 14.5h200q21 0 35.5 -14.5t14.5 -35.5zM1100 650v-200q0 -21 -14.5 -35.5t-35.5 -14.5h-200 q-21 0 -35.5 14.5t-14.5 35.5v200q0 21 14.5 35.5t35.5 14.5h200q21 0 35.5 -14.5t14.5 -35.5zM300 250v-200q0 -21 -14.5 -35.5t-35.5 -14.5h-200q-21 0 -35.5 14.5t-14.5 35.5v200q0 21 14.5 35.5t35.5 14.5h200q21 0 35.5 -14.5t14.5 -35.5zM700 250v-200 q0 -21 -14.5 -35.5t-35.5 -14.5h-200q-21 0 -35.5 14.5t-14.5 35.5v200q0 21 14.5 35.5t35.5 14.5h200q21 0 35.5 -14.5t14.5 -35.5zM1100 250v-200q0 -21 -14.5 -35.5t-35.5 -14.5h-200q-21 0 -35.5 14.5t-14.5 35.5v200q0 21 14.5 35.5t35.5 14.5h200q21 0 35.5 -14.5 t14.5 -35.5z" />
 44 | <glyph unicode="&#xe012;" d="M300 1050v-200q0 -21 -14.5 -35.5t-35.5 -14.5h-200q-21 0 -35.5 14.5t-14.5 35.5v200q0 21 14.5 35.5t35.5 14.5h200q21 0 35.5 -14.5t14.5 -35.5zM1200 1050v-200q0 -21 -14.5 -35.5t-35.5 -14.5h-700q-21 0 -35.5 14.5t-14.5 35.5v200q0 21 14.5 35.5t35.5 14.5h700 q21 0 35.5 -14.5t14.5 -35.5zM300 450v200q0 21 -14.5 35.5t-35.5 14.5h-200q-21 0 -35.5 -14.5t-14.5 -35.5v-200q0 -21 14.5 -35.5t35.5 -14.5h200q21 0 35.5 14.5t14.5 35.5zM1200 650v-200q0 -21 -14.5 -35.5t-35.5 -14.5h-700q-21 0 -35.5 14.5t-14.5 35.5v200 q0 21 14.5 35.5t35.5 14.5h700q21 0 35.5 -14.5t14.5 -35.5zM300 250v-200q0 -21 -14.5 -35.5t-35.5 -14.5h-200q-21 0 -35.5 14.5t-14.5 35.5v200q0 21 14.5 35.5t35.5 14.5h200q21 0 35.5 -14.5t14.5 -35.5zM1200 250v-200q0 -21 -14.5 -35.5t-35.5 -14.5h-700 q-21 0 -35.5 14.5t-14.5 35.5v200q0 21 14.5 35.5t35.5 14.5h700q21 0 35.5 -14.5t14.5 -35.5z" />
 45 | <glyph unicode="&#xe013;" d="M448 34l818 820l-212 212l-607 -607l-206 207l-212 -212z" />
 46 | <glyph unicode="&#xe014;" d="M882 106l-282 282l-282 -282l-212 212l282 282l-282 282l212 212l282 -282l282 282l212 -212l-282 -282l282 -282z" />
 47 | <glyph unicode="&#xe015;" d="M913 432l300 -300q7 -8 7 -18t-7 -18l-109 -109q-8 -7 -18 -7t-18 7l-300 300q-119 -78 -261 -78q-200 0 -342 142t-142 342t142 342t342 142t342 -142t142 -342q0 -142 -78 -261zM507 363q137 0 233.5 96.5t96.5 233.5t-96.5 233.5t-233.5 96.5t-234 -97t-97 -233 t97 -233t234 -97zM600 800h100v-200h-100v-100h-200v100h-100v200h100v100h200v-100z" />
 48 | <glyph unicode="&#xe016;" d="M913 432l300 -299q7 -7 7 -18t-7 -18l-109 -109q-8 -8 -18 -8t-18 8l-300 299q-120 -77 -261 -77q-200 0 -342 142t-142 342t142 342t342 142t342 -142t142 -342q0 -141 -78 -262zM176 694q0 -136 97 -233t234 -97t233.5 97t96.5 233t-96.5 233t-233.5 97t-234 -97 t-97 -233zM300 801v-200h400v200h-400z" />
 49 | <glyph unicode="&#xe017;" d="M700 750v400q0 21 -14.5 35.5t-35.5 14.5h-100q-21 0 -35.5 -14.5t-14.5 -35.5v-400q0 -21 14.5 -35.5t35.5 -14.5h100q21 0 35.5 14.5t14.5 35.5zM800 975v166q167 -62 272 -210t105 -331q0 -118 -45.5 -224.5t-123 -184t-184 -123t-224.5 -45.5t-224.5 45.5t-184 123 t-123 184t-45.5 224.5q0 183 105 331t272 210v-166q-103 -55 -165 -155t-62 -220q0 -177 125 -302t302 -125t302 125t125 302q0 120 -62 220t-165 155z" />
 50 | <glyph unicode="&#xe018;" d="M1200 1h-200v1200h200v-1200zM900 1h-200v800h200v-800zM600 1h-200v500h200v-500zM300 301h-200v-300h200v300z" />
 51 | <glyph unicode="&#xe019;" d="M488 183l38 -151q40 -5 74 -5q27 0 74 5l38 151l6 2q46 13 93 39l5 3l134 -81q56 44 104 105l-80 134l3 5q24 44 39 93l1 6l152 38q5 40 5 74q0 28 -5 73l-152 38l-1 6q-16 51 -39 93l-3 5l80 134q-44 58 -104 105l-134 -81l-5 3q-45 25 -93 39l-6 1l-38 152q-40 5 -74 5 q-27 0 -74 -5l-38 -152l-5 -1q-50 -14 -94 -39l-5 -3l-133 81q-59 -47 -105 -105l80 -134l-3 -5q-25 -47 -38 -93l-2 -6l-151 -38q-6 -48 -6 -73q0 -33 6 -74l151 -38l2 -6q14 -49 38 -93l3 -5l-80 -134q45 -59 105 -105l133 81l5 -3q45 -26 94 -39zM600 815q89 0 152 -63 t63 -151q0 -89 -63 -152t-152 -63t-152 63t-63 152q0 88 63 151t152 63z" />
 52 | <glyph unicode="&#xe020;" d="M900 1100h275q10 0 17.5 -7.5t7.5 -17.5v-50q0 -11 -7 -18t-18 -7h-1050q-11 0 -18 7t-7 18v50q0 10 7.5 17.5t17.5 7.5h275v100q0 41 29.5 70.5t70.5 29.5h300q41 0 70.5 -29.5t29.5 -70.5v-100zM800 1100v100h-300v-100h300zM200 900h900v-800q0 -41 -29.5 -71 t-70.5 -30h-700q-41 0 -70.5 30t-29.5 71v800zM300 100h100v700h-100v-700zM500 100h100v700h-100v-700zM700 100h100v700h-100v-700zM900 100h100v700h-100v-700z" />
 53 | <glyph unicode="&#xe021;" d="M1301 601h-200v-600h-300v400h-300v-400h-300v600h-200l656 644z" />
 54 | <glyph unicode="&#xe022;" d="M600 700h400v-675q0 -11 -7 -18t-18 -7h-850q-11 0 -18 7t-7 18v1150q0 11 7 18t18 7h475v-500zM1000 800h-300v300z" />
 55 | <glyph unicode="&#xe023;" d="M600 1196q162 0 299 -80t217 -217t80 -299t-80 -299t-217 -217t-299 -80t-299 80t-217 217t-80 299t80 299t217 217t299 80zM600 1014q-171 0 -292.5 -121.5t-121.5 -292.5t121.5 -292.5t292.5 -121.5t292.5 121.5t121.5 292.5t-121.5 292.5t-292.5 121.5zM600 600h200 v-100h-300v400h100v-300z" />
 56 | <glyph unicode="&#xe024;" d="M721 400h-242l-40 -400h-539l431 1200h209l-21 -300h162l-20 300h208l431 -1200h-538zM712 500l-27 300h-170l-27 -300h224z" />
 57 | <glyph unicode="&#xe025;" d="M1100 400v-400h-1100v400h490l-290 300h200v500h300v-500h200l-290 -300h490zM988 300h-175v-100h175v100z" />
 58 | <glyph unicode="&#xe026;" d="M600 1199q122 0 233 -47.5t191 -127.5t127.5 -191t47.5 -233t-47.5 -233t-127.5 -191t-191 -127.5t-233 -47.5t-233 47.5t-191 127.5t-127.5 191t-47.5 233t47.5 233t127.5 191t191 127.5t233 47.5zM600 1012q-170 0 -291 -121t-121 -291t121 -291t291 -121t291 121 t121 291t-121 291t-291 121zM700 600h150l-250 -300l-250 300h150v300h200v-300z" />
 59 | <glyph unicode="&#xe027;" d="M600 1196q162 0 299 -80t217 -217t80 -299t-80 -299t-217 -217t-299 -80t-299 80t-217 217t-80 299t80 299t217 217t299 80zM600 1014q-171 0 -292.5 -121.5t-121.5 -292.5t121.5 -292.5t292.5 -121.5t292.5 121.5t121.5 292.5t-121.5 292.5t-292.5 121.5zM850 600h-150 v-300h-200v300h-150l250 300z" />
 60 | <glyph unicode="&#xe028;" d="M0 500l200 700h800q199 -700 200 -700v-475q0 -11 -7 -18t-18 -7h-1150q-11 0 -18 7t-7 18v475zM903 1000h-606l-97 -500h200l50 -200h300l50 200h200z" />
 61 | <glyph unicode="&#xe029;" d="M600 1196q162 0 299 -80t217 -217t80 -299t-80 -299t-217 -217t-299 -80t-299 80t-217 217t-80 299t80 299t217 217t299 80zM600 1014q-171 0 -292.5 -121.5t-121.5 -292.5q0 -172 121.5 -293t292.5 -121t292.5 121t121.5 293q0 171 -121.5 292.5t-292.5 121.5zM797 598 l-297 -201v401z" />
 62 | <glyph unicode="&#xe030;" d="M1177 600h-150q0 -177 -125 -302t-302 -125t-302 125t-125 302t125 302t302 125q136 0 246 -81l-146 -146h400v400l-145 -145q-157 122 -355 122q-118 0 -224.5 -45.5t-184 -123t-123 -184t-45.5 -224.5t45.5 -224.5t123 -184t184 -123t224.5 -45.5t224.5 45.5t184 123 t123 184t45.5 224.5z" />
 63 | <glyph unicode="&#xe031;" d="M700 800l147 147q-112 80 -247 80q-177 0 -302 -125t-125 -302h-150q0 118 45.5 224.5t123 184t184 123t224.5 45.5q198 0 355 -122l145 145v-400h-400zM500 400l-147 -147q112 -80 247 -80q177 0 302 125t125 302h150q0 -118 -45.5 -224.5t-123 -184t-184 -123 t-224.5 -45.5q-198 0 -355 122l-145 -145v400h400z" />
 64 | <glyph unicode="&#xe032;" d="M100 1200v-1200h1100v1200h-1100zM1100 100h-900v900h900v-900zM400 800h-100v100h100v-100zM1000 800h-500v100h500v-100zM400 600h-100v100h100v-100zM1000 600h-500v100h500v-100zM400 400h-100v100h100v-100zM1000 400h-500v100h500v-100zM400 200h-100v100h100v-100 zM1000 300h-500v-100h500v100z" />
 65 | <glyph unicode="&#xe034;" d="M200 0h-100v1100h100v-1100zM1100 600v500q-40 -81 -101.5 -115.5t-127.5 -29.5t-138 25t-139.5 40t-125.5 25t-103 -29.5t-65 -115.5v-500q60 60 127.5 84t127.5 17.5t122 -23t119 -30t110 -11t103 42t91 120.5z" />
 66 | <glyph unicode="&#xe035;" d="M1200 275v300q0 116 -49.5 227t-131 192.5t-192.5 131t-227 49.5t-227 -49.5t-192.5 -131t-131 -192.5t-49.5 -227v-300q0 -11 7 -18t18 -7h50q11 0 18 7t7 18v300q0 127 70.5 231.5t184.5 161.5t245 57t245 -57t184.5 -161.5t70.5 -231.5v-300q0 -11 7 -18t18 -7h50 q11 0 18 7t7 18zM400 480v-460q0 -8 -6 -14t-14 -6h-160q-8 0 -14 6t-6 14v460q0 8 6 14t14 6h160q8 0 14 -6t6 -14zM1000 480v-460q0 -8 -6 -14t-14 -6h-160q-8 0 -14 6t-6 14v460q0 8 6 14t14 6h160q8 0 14 -6t6 -14z" />
 67 | <glyph unicode="&#xe036;" d="M0 800v-400h300l300 -200v800l-300 -200h-300zM971 600l141 -141l-71 -71l-141 141l-141 -141l-71 71l141 141l-141 141l71 71l141 -141l141 141l71 -71z" />
 68 | <glyph unicode="&#xe037;" d="M0 800v-400h300l300 -200v800l-300 -200h-300zM700 857l69 53q111 -135 111 -310q0 -169 -106 -302l-67 54q86 110 86 248q0 146 -93 257z" />
 69 | <glyph unicode="&#xe038;" d="M974 186l6 8q142 178 142 405q0 230 -144 408l-6 8l-83 -64l7 -8q123 -151 123 -344q0 -189 -119 -339l-7 -8zM300 801l300 200v-800l-300 200h-300v400h300zM702 858l69 53q111 -135 111 -310q0 -170 -106 -303l-67 55q86 110 86 248q0 145 -93 257z" />
 70 | <glyph unicode="&#xe039;" d="M100 700h400v100h100v100h-100v300h-500v-600h100v100zM1200 700v500h-600v-200h100v-300h200v-300h300v200h-200v100h200zM100 1100h300v-300h-300v300zM800 800v300h300v-300h-300zM200 900h100v100h-100v-100zM900 1000h100v-100h-100v100zM300 600h-100v-100h-200 v-500h500v500h-200v100zM900 200v-100h-200v100h-100v100h100v200h-200v100h300v-300h200v-100h-100zM400 400v-300h-300v300h300zM300 200h-100v100h100v-100zM1100 300h100v-100h-100v100zM600 100h100v-100h-100v100zM1200 100v-100h-300v100h300z" />
 71 | <glyph unicode="&#xe040;" d="M100 1200h-100v-1000h100v1000zM300 200h-100v1000h100v-1000zM700 200h-200v1000h200v-1000zM900 200h-100v1000h100v-1000zM1200 1200v-1000h-200v1000h200zM400 100v-100h-300v100h300zM500 91h100v-91h-100v91zM700 91h100v-91h-100v91zM1100 91v-91h-200v91h200z " />
 72 | <glyph unicode="&#xe041;" d="M1200 500l-500 -500l-699 700v475q0 10 7.5 17.5t17.5 7.5h474zM320 882q29 29 29 71t-29 71q-30 30 -71.5 30t-71.5 -30q-29 -29 -29 -71t29 -71q30 -30 71.5 -30t71.5 30z" />
 73 | <glyph unicode="&#xe042;" d="M1201 500l-500 -500l-699 700v475q0 11 7 18t18 7h474zM1501 500l-500 -500l-50 50l450 450l-700 700h100zM320 882q30 29 30 71t-30 71q-29 30 -71 30t-71 -30q-30 -29 -30 -71t30 -71q29 -30 71 -30t71 30z" />
 74 | <glyph unicode="&#xe043;" d="M1200 1200v-1000l-100 -100v1000h-750l-100 -100h750v-1000h-900v1025l175 175h925z" />
 75 | <glyph unicode="&#xe045;" d="M947 829l-94 346q-2 11 -10 18t-18 7h-450q-10 0 -18 -7t-10 -18l-94 -346l40 -124h592zM1200 800v-700h-200v200h-800v-200h-200v700h200l100 -200h600l100 200h200zM881 176l38 -152q2 -10 -3.5 -17t-15.5 -7h-600q-10 0 -15.5 7t-3.5 17l38 152q2 10 11.5 17t19.5 7 h500q10 0 19.5 -7t11.5 -17z" />
 76 | <glyph unicode="&#xe047;" d="M1200 0v66q-34 1 -74 43q-18 19 -33 42t-21 37l-6 13l-385 998h-93l-399 -1006q-24 -48 -52 -75q-12 -12 -33 -25t-36 -20l-15 -7v-66h365v66q-41 0 -72 11t-49 38t1 71l92 234h391l82 -222q16 -45 -5.5 -88.5t-74.5 -43.5v-66h417zM416 521l178 457l46 -140l116 -317 h-340z" />
 77 | <glyph unicode="&#xe048;" d="M100 1199h471q120 0 213 -88t93 -228q0 -55 -11.5 -101.5t-28 -74t-33.5 -47.5t-28 -28l-12 -7q8 -3 21.5 -9t48 -31.5t60.5 -58t47.5 -91.5t21.5 -129q0 -84 -59 -156.5t-142 -111t-162 -38.5h-500v89q41 7 70.5 32.5t29.5 65.5v827q0 28 -1 39.5t-5.5 26t-15.5 21 t-29 14t-49 14.5v70zM400 1079v-379h139q76 0 130 61.5t54 138.5q0 82 -84 130.5t-239 48.5zM400 200h161q89 0 153 48.5t64 132.5q0 90 -62.5 154.5t-156.5 64.5h-159v-400z" />
 78 | <glyph unicode="&#xe049;" d="M877 1200l2 -57q-33 -8 -62 -25.5t-46 -37t-29.5 -38t-17.5 -30.5l-5 -12l-128 -825q-10 -52 14 -82t95 -36v-57h-500v57q77 7 134.5 40.5t65.5 80.5l173 849q10 56 -10 74t-91 37q-6 1 -10.5 2.5t-9.5 2.5v57h425z" />
 79 | <glyph unicode="&#xe050;" d="M1150 1200h150v-300h-50q0 29 -8 48.5t-18.5 30t-33.5 15t-39.5 5.5t-50.5 1h-200v-850l100 -50v-100h-400v100l100 50v850h-200q-34 0 -50.5 -1t-40 -5.5t-33.5 -15t-18.5 -30t-8.5 -48.5h-49v300h150h700zM100 1000v-800h75l-125 -167l-125 167h75v800h-75l125 167 l125 -167h-75z" />
 80 | <glyph unicode="&#xe051;" d="M950 1201h150v-300h-50q0 29 -8 48.5t-18 30t-33.5 15t-40 5.5t-50.5 1h-200v-650l100 -50v-100h-400v100l100 50v650h-200q-34 0 -50.5 -1t-39.5 -5.5t-33.5 -15t-18.5 -30t-8 -48.5h-50v300h150h700zM200 101h800v75l167 -125l-167 -125v75h-800v-75l-167 125l167 125 v-75z" />
 81 | <glyph unicode="&#xe052;" d="M700 950v100q0 21 -14.5 35.5t-35.5 14.5h-600q-21 0 -35.5 -14.5t-14.5 -35.5v-100q0 -20 14.5 -35t35.5 -15h600q21 0 35.5 15t14.5 35zM1100 650v100q0 21 -14.5 35.5t-35.5 14.5h-1000q-21 0 -35.5 -14.5t-14.5 -35.5v-100q0 -20 14.5 -35t35.5 -15h1000 q21 0 35.5 15t14.5 35zM900 350v100q0 21 -14.5 35.5t-35.5 14.5h-800q-21 0 -35.5 -14.5t-14.5 -35.5v-100q0 -20 14.5 -35t35.5 -15h800q21 0 35.5 15t14.5 35zM1200 50v100q0 21 -14.5 35.5t-35.5 14.5h-1100q-21 0 -35.5 -14.5t-14.5 -35.5v-100q0 -20 14.5 -35 t35.5 -15h1100q21 0 35.5 15t14.5 35z" />
 82 | <glyph unicode="&#xe053;" d="M1000 950v100q0 21 -14.5 35.5t-35.5 14.5h-700q-21 0 -35.5 -14.5t-14.5 -35.5v-100q0 -20 14.5 -35t35.5 -15h700q21 0 35.5 15t14.5 35zM1200 650v100q0 21 -14.5 35.5t-35.5 14.5h-1100q-21 0 -35.5 -14.5t-14.5 -35.5v-100q0 -20 14.5 -35t35.5 -15h1100 q21 0 35.5 15t14.5 35zM1000 350v100q0 21 -14.5 35.5t-35.5 14.5h-700q-21 0 -35.5 -14.5t-14.5 -35.5v-100q0 -20 14.5 -35t35.5 -15h700q21 0 35.5 15t14.5 35zM1200 50v100q0 21 -14.5 35.5t-35.5 14.5h-1100q-21 0 -35.5 -14.5t-14.5 -35.5v-100q0 -20 14.5 -35 t35.5 -15h1100q21 0 35.5 15t14.5 35z" />
 83 | <glyph unicode="&#xe054;" d="M500 950v100q0 21 14.5 35.5t35.5 14.5h600q21 0 35.5 -14.5t14.5 -35.5v-100q0 -20 -14.5 -35t-35.5 -15h-600q-21 0 -35.5 15t-14.5 35zM100 650v100q0 21 14.5 35.5t35.5 14.5h1000q21 0 35.5 -14.5t14.5 -35.5v-100q0 -20 -14.5 -35t-35.5 -15h-1000q-21 0 -35.5 15 t-14.5 35zM300 350v100q0 21 14.5 35.5t35.5 14.5h800q21 0 35.5 -14.5t14.5 -35.5v-100q0 -20 -14.5 -35t-35.5 -15h-800q-21 0 -35.5 15t-14.5 35zM0 50v100q0 21 14.5 35.5t35.5 14.5h1100q21 0 35.5 -14.5t14.5 -35.5v-100q0 -20 -14.5 -35t-35.5 -15h-1100 q-21 0 -35.5 15t-14.5 35z" />
 84 | <glyph unicode="&#xe055;" d="M0 950v100q0 21 14.5 35.5t35.5 14.5h1100q21 0 35.5 -14.5t14.5 -35.5v-100q0 -20 -14.5 -35t-35.5 -15h-1100q-21 0 -35.5 15t-14.5 35zM0 650v100q0 21 14.5 35.5t35.5 14.5h1100q21 0 35.5 -14.5t14.5 -35.5v-100q0 -20 -14.5 -35t-35.5 -15h-1100q-21 0 -35.5 15 t-14.5 35zM0 350v100q0 21 14.5 35.5t35.5 14.5h1100q21 0 35.5 -14.5t14.5 -35.5v-100q0 -20 -14.5 -35t-35.5 -15h-1100q-21 0 -35.5 15t-14.5 35zM0 50v100q0 21 14.5 35.5t35.5 14.5h1100q21 0 35.5 -14.5t14.5 -35.5v-100q0 -20 -14.5 -35t-35.5 -15h-1100 q-21 0 -35.5 15t-14.5 35z" />
 85 | <glyph unicode="&#xe056;" d="M0 950v100q0 21 14.5 35.5t35.5 14.5h100q21 0 35.5 -14.5t14.5 -35.5v-100q0 -20 -14.5 -35t-35.5 -15h-100q-21 0 -35.5 15t-14.5 35zM300 950v100q0 21 14.5 35.5t35.5 14.5h800q21 0 35.5 -14.5t14.5 -35.5v-100q0 -20 -14.5 -35t-35.5 -15h-800q-21 0 -35.5 15 t-14.5 35zM0 650v100q0 21 14.5 35.5t35.5 14.5h100q21 0 35.5 -14.5t14.5 -35.5v-100q0 -20 -14.5 -35t-35.5 -15h-100q-21 0 -35.5 15t-14.5 35zM300 650v100q0 21 14.5 35.5t35.5 14.5h800q21 0 35.5 -14.5t14.5 -35.5v-100q0 -20 -14.5 -35t-35.5 -15h-800 q-21 0 -35.5 15t-14.5 35zM0 350v100q0 21 14.5 35.5t35.5 14.5h100q21 0 35.5 -14.5t14.5 -35.5v-100q0 -20 -14.5 -35t-35.5 -15h-100q-21 0 -35.5 15t-14.5 35zM300 350v100q0 21 14.5 35.5t35.5 14.5h800q21 0 35.5 -14.5t14.5 -35.5v-100q0 -20 -14.5 -35t-35.5 -15 h-800q-21 0 -35.5 15t-14.5 35zM0 50v100q0 21 14.5 35.5t35.5 14.5h100q21 0 35.5 -14.5t14.5 -35.5v-100q0 -20 -14.5 -35t-35.5 -15h-100q-21 0 -35.5 15t-14.5 35zM300 50v100q0 21 14.5 35.5t35.5 14.5h800q21 0 35.5 -14.5t14.5 -35.5v-100q0 -20 -14.5 -35t-35.5 -15 h-800q-21 0 -35.5 15t-14.5 35z" />
 86 | <glyph unicode="&#xe057;" d="M400 1100h-100v-1100h100v1100zM700 950v100q0 21 -15 35.5t-35 14.5h-100q-21 0 -35.5 -14.5t-14.5 -35.5v-100q0 -20 14.5 -35t35.5 -15h100q20 0 35 15t15 35zM1100 650v100q0 21 -15 35.5t-35 14.5h-500q-21 0 -35.5 -14.5t-14.5 -35.5v-100q0 -20 14.5 -35t35.5 -15 h500q20 0 35 15t15 35zM100 425v75h-201v100h201v75l166 -125zM900 350v100q0 21 -15 35.5t-35 14.5h-300q-21 0 -35.5 -14.5t-14.5 -35.5v-100q0 -20 14.5 -35t35.5 -15h300q20 0 35 15t15 35zM1200 50v100q0 21 -15 35.5t-35 14.5h-600q-21 0 -35.5 -14.5t-14.5 -35.5 v-100q0 -20 14.5 -35t35.5 -15h600q20 0 35 15t15 35z" />
 87 | <glyph unicode="&#xe058;" d="M201 950v100q0 21 -15 35.5t-35 14.5h-100q-21 0 -35.5 -14.5t-14.5 -35.5v-100q0 -20 14.5 -35t35.5 -15h100q20 0 35 15t15 35zM801 1100h100v-1100h-100v1100zM601 650v100q0 21 -15 35.5t-35 14.5h-500q-21 0 -35.5 -14.5t-14.5 -35.5v-100q0 -20 14.5 -35t35.5 -15 h500q20 0 35 15t15 35zM1101 425v75h200v100h-200v75l-167 -125zM401 350v100q0 21 -15 35.5t-35 14.5h-300q-21 0 -35.5 -14.5t-14.5 -35.5v-100q0 -20 14.5 -35t35.5 -15h300q20 0 35 15t15 35zM701 50v100q0 21 -15 35.5t-35 14.5h-600q-21 0 -35.5 -14.5t-14.5 -35.5 v-100q0 -20 14.5 -35t35.5 -15h600q20 0 35 15t15 35z" />
 88 | <glyph unicode="&#xe059;" d="M900 925v-650q0 -31 -22 -53t-53 -22h-750q-31 0 -53 22t-22 53v650q0 31 22 53t53 22h750q31 0 53 -22t22 -53zM1200 300l-300 300l300 300v-600z" />
 89 | <glyph unicode="&#xe060;" d="M1200 1056v-1012q0 -18 -12.5 -31t-31.5 -13h-1112q-18 0 -31 13t-13 31v1012q0 18 13 31t31 13h1112q19 0 31.5 -13t12.5 -31zM1100 1000h-1000v-737l247 182l298 -131l-74 156l293 318l236 -288v500zM476 750q0 -56 -39 -95t-95 -39t-95 39t-39 95t39 95t95 39t95 -39 t39 -95z" />
 90 | <glyph unicode="&#xe062;" d="M600 1213q123 0 227 -63t164.5 -169.5t60.5 -229.5t-73 -272q-73 -114 -166.5 -237t-150.5 -189l-57 -66q-10 9 -27 26t-66.5 70.5t-96 109t-104 135.5t-100.5 155q-63 139 -63 262q0 124 60.5 231.5t165 172t226.5 64.5zM599 514q107 0 182.5 75.5t75.5 182.5t-75.5 182 t-182.5 75t-182 -75.5t-75 -181.5q0 -107 75.5 -182.5t181.5 -75.5z" />
 91 | <glyph unicode="&#xe063;" d="M600 1199q122 0 233 -47.5t191 -127.5t127.5 -191t47.5 -233t-47.5 -233t-127.5 -191t-191 -127.5t-233 -47.5t-233 47.5t-191 127.5t-127.5 191t-47.5 233t47.5 233t127.5 191t191 127.5t233 47.5zM600 173v854q-176 0 -301.5 -125t-125.5 -302t125.5 -302t301.5 -125z " />
 92 | <glyph unicode="&#xe064;" d="M554 1295q21 -71 57.5 -142.5t76 -130.5t83 -118.5t82 -117t70 -116t50 -125.5t18.5 -136q0 -89 -39 -165.5t-102 -126.5t-140 -79.5t-156 -33.5q-114 6 -211.5 53t-161.5 138.5t-64 210.5q0 94 34 186t88.5 172.5t112 159t115 177t87.5 194.5zM455 296q-7 6 -18 17 t-34 48t-33 77q-15 73 -14 143.5t10 122.5l9 51q-92 -110 -119.5 -185t-12.5 -156q14 -82 59.5 -136t136.5 -80z" />
 93 | <glyph unicode="&#xe065;" d="M1108 902l113 113l-21 85l-92 28l-113 -113zM1100 625v-225q0 -165 -117.5 -282.5t-282.5 -117.5h-300q-165 0 -282.5 117.5t-117.5 282.5v300q0 165 117.5 282.5t282.5 117.5q366 -6 397 -14l-186 -186h-311q-41 0 -70.5 -29.5t-29.5 -70.5v-500q0 -41 29.5 -70.5 t70.5 -29.5h500q41 0 70.5 29.5t29.5 70.5v125zM436 341l161 50l412 412l-114 113l-405 -405z" />
 94 | <glyph unicode="&#xe066;" d="M1100 453v-53q0 -165 -117.5 -282.5t-282.5 -117.5h-300q-165 0 -282.5 117.5t-117.5 282.5v300q0 165 117.5 282.5t282.5 117.5h261l2 -80q-133 -32 -218 -120h-145q-41 0 -70.5 -29.5t-29.5 -70.5v-500q0 -41 29.5 -70.5t70.5 -29.5h500q41 0 70.5 29.5t29.5 70.5z M813 431l360 324l-359 318v-216q-7 0 -19 -1t-48 -8t-69.5 -18.5t-76.5 -37t-76.5 -59t-62 -88t-39.5 -121.5q30 38 81.5 64t103 35.5t99 14t77.5 3.5l29 -1v-209z" />
 95 | <glyph unicode="&#xe067;" d="M1100 569v-169q0 -165 -117.5 -282.5t-282.5 -117.5h-300q-165 0 -282.5 117.5t-117.5 282.5v300q0 165 117.5 282.5t282.5 117.5h300q60 0 127 -23l-178 -177h-349q-41 0 -70.5 -29.5t-29.5 -70.5v-500q0 -41 29.5 -70.5t70.5 -29.5h500q41 0 70.5 29.5t29.5 70.5v69z M625 348l566 567l-136 137l-430 -431l-147 147l-136 -136z" />
 96 | <glyph unicode="&#xe068;" d="M900 303v198h-200v-200h195l-295 -300l-300 300h200v200h-200v-198l-300 300l300 296v-198h200v200h-200l300 300l295 -300h-195v-200h200v198l300 -296z" />
 97 | <glyph unicode="&#xe069;" d="M900 0l-500 488v-438q0 -21 -14.5 -35.5t-35.5 -14.5h-100q-21 0 -35.5 14.5t-14.5 35.5v1000q0 21 14.5 35.5t35.5 14.5h100q21 0 35.5 -14.5t14.5 -35.5v-437l500 487v-1100z" />
 98 | <glyph unicode="&#xe070;" d="M1200 0l-500 488v-488l-500 488v-438q0 -21 -14.5 -35.5t-35.5 -14.5h-100q-21 0 -35.5 14.5t-14.5 35.5v1000q0 21 14.5 35.5t35.5 14.5h100q21 0 35.5 -14.5t14.5 -35.5v-437l500 487v-487l500 487v-1100z" />
 99 | <glyph unicode="&#xe071;" d="M1200 0l-500 488v-488l-564 550l564 550v-487l500 487v-1100z" />
100 | <glyph unicode="&#xe072;" d="M1100 550l-900 550v-1100z" />
101 | <glyph unicode="&#xe073;" d="M500 150v800q0 21 -14.5 35.5t-35.5 14.5h-200q-21 0 -35.5 -14.5t-14.5 -35.5v-800q0 -21 14.5 -35.5t35.5 -14.5h200q21 0 35.5 14.5t14.5 35.5zM900 150v800q0 21 -14.5 35.5t-35.5 14.5h-200q-21 0 -35.5 -14.5t-14.5 -35.5v-800q0 -21 14.5 -35.5t35.5 -14.5h200 q21 0 35.5 14.5t14.5 35.5z" />
102 | <glyph unicode="&#xe074;" d="M1100 150v800q0 21 -14.5 35.5t-35.5 14.5h-800q-21 0 -35.5 -14.5t-14.5 -35.5v-800q0 -20 14.5 -35t35.5 -15h800q21 0 35.5 15t14.5 35z" />
103 | <glyph unicode="&#xe075;" d="M500 0v488l-500 -488v1100l500 -487v487l564 -550z" />
104 | <glyph unicode="&#xe076;" d="M1050 1100h100q21 0 35.5 -14.5t14.5 -35.5v-1000q0 -21 -14.5 -35.5t-35.5 -14.5h-100q-21 0 -35.5 14.5t-14.5 35.5v438l-500 -488v488l-500 -488v1100l500 -487v487l500 -487v437q0 21 14.5 35.5t35.5 14.5z" />
105 | <glyph unicode="&#xe077;" d="M850 1100h100q21 0 35.5 -14.5t14.5 -35.5v-1000q0 -21 -14.5 -35.5t-35.5 -14.5h-100q-21 0 -35.5 14.5t-14.5 35.5v438l-500 -488v1100l500 -487v437q0 21 14.5 35.5t35.5 14.5z" />
106 | <glyph unicode="&#xe078;" d="M650 1064l-550 -564h1100zM1200 350v-100q0 -21 -14.5 -35.5t-35.5 -14.5h-1000q-21 0 -35.5 14.5t-14.5 35.5v100q0 21 14.5 35.5t35.5 14.5h1000q21 0 35.5 -14.5t14.5 -35.5z" />
107 | <glyph unicode="&#xe079;" d="M777 7l240 240l-353 353l353 353l-240 240l-592 -594z" />
108 | <glyph unicode="&#xe080;" d="M513 -46l-241 240l353 353l-353 353l241 240l572 -571l21 -22l-1 -1v-1z" />
109 | <glyph unicode="&#xe081;" d="M600 1197q162 0 299.5 -80t217.5 -217.5t80 -299.5t-80 -299.5t-217.5 -217.5t-299.5 -80t-299.5 80t-217.5 217.5t-80 299.5t80 299.5t217.5 217.5t299.5 80zM500 900v-200h-200v-200h200v-200h200v200h200v200h-200v200h-200z" />
110 | <glyph unicode="&#xe082;" d="M600 1197q162 0 299.5 -80t217.5 -217.5t80 -299.5t-80 -299.5t-217.5 -217.5t-299.5 -80t-299.5 80t-217.5 217.5t-80 299.5t80 299.5t217.5 217.5t299.5 80zM300 700v-200h600v200h-600z" />
111 | <glyph unicode="&#xe083;" d="M600 1197q162 0 299.5 -80t217.5 -217.5t80 -299.5t-80 -299.5t-217.5 -217.5t-299.5 -80t-299.5 80t-217.5 217.5t-80 299.5t80 299.5t217.5 217.5t299.5 80zM247 741l141 -141l-142 -141l213 -213l141 142l141 -142l213 213l-142 141l142 141l-213 212l-141 -141 l-141 142z" />
112 | <glyph unicode="&#xe084;" d="M600 1197q162 0 299.5 -80t217.5 -217.5t80 -299.5t-80 -299.5t-217.5 -217.5t-299.5 -80t-299.5 80t-217.5 217.5t-80 299.5t80 299.5t217.5 217.5t299.5 80zM546 623l-102 102l-174 -174l276 -277l411 411l-175 174z" />
113 | <glyph unicode="&#xe085;" d="M600 1197q162 0 299.5 -80t217.5 -217.5t80 -299.5t-80 -299.5t-217.5 -217.5t-299.5 -80t-299.5 80t-217.5 217.5t-80 299.5t80 299.5t217.5 217.5t299.5 80zM500 500h200q5 3 14 8t31.5 25.5t39.5 45.5t31 69t14 94q0 51 -17.5 89t-42 58t-58.5 32t-58.5 15t-51.5 3 q-105 0 -172 -56t-67 -183h144q4 0 11.5 -1t11 -1t6.5 3t3 9t1 11t3.5 8.5t3.5 6t5.5 4t6.5 2.5t9 1.5t9 0.5h11.5h12.5q19 0 30 -10t11 -26q0 -22 -4 -28t-27 -22q-5 -1 -12.5 -3t-27 -13.5t-34 -27t-26.5 -46t-11 -68.5zM500 400v-100h200v100h-200z" />
114 | <glyph unicode="&#xe086;" d="M600 1197q162 0 299.5 -80t217.5 -217.5t80 -299.5t-80 -299.5t-217.5 -217.5t-299.5 -80t-299.5 80t-217.5 217.5t-80 299.5t80 299.5t217.5 217.5t299.5 80zM500 900v-100h200v100h-200zM400 700v-100h100v-200h-100v-100h400v100h-100v300h-300z" />
115 | <glyph unicode="&#xe087;" d="M1200 700v-200h-203q-25 -102 -116.5 -186t-180.5 -117v-197h-200v197q-140 27 -208 102.5t-98 200.5h-194v200h194q15 60 36 104.5t55.5 86t88 69t126.5 40.5v200h200v-200q54 -20 113 -60t112.5 -105.5t71.5 -134.5h203zM700 500v-206q149 48 201 206h-201v200h200 q-25 74 -76 127.5t-124 76.5v-204h-200v203q-75 -24 -130 -77.5t-79 -125.5h209v-200h-210q24 -73 79.5 -127.5t130.5 -78.5v206h200z" />
116 | <glyph unicode="&#xe088;" d="M600 1196q162 0 299 -80t217 -217t80 -299t-80 -299t-217 -217t-299 -80t-299 80t-217 217t-80 299t80 299t217 217t299 80zM600 1014q-171 0 -292.5 -121.5t-121.5 -292.5t121.5 -292.5t292.5 -121.5t292.5 121.5t121.5 292.5t-121.5 292.5t-292.5 121.5zM844 735 l-135 -135l135 -135l-109 -109l-135 135l-135 -135l-109 109l135 135l-135 135l109 109l135 -135l135 135z" />
117 | <glyph unicode="&#xe089;" d="M600 1196q162 0 299 -80t217 -217t80 -299t-80 -299t-217 -217t-299 -80t-299 80t-217 217t-80 299t80 299t217 217t299 80zM600 1014q-171 0 -292.5 -121.5t-121.5 -292.5t121.5 -292.5t292.5 -121.5t292.5 121.5t121.5 292.5t-121.5 292.5t-292.5 121.5zM896 654 l-346 -345l-228 228l141 141l87 -87l204 205z" />
118 | <glyph unicode="&#xe090;" d="M600 1196q162 0 299 -80t217 -217t80 -299t-80 -299t-217 -217t-299 -80t-299 80t-217 217t-80 299t80 299t217 217t299 80zM248 385l568 567q-100 62 -216 62q-171 0 -292.5 -121.5t-121.5 -292.5q0 -115 62 -215zM955 809l-564 -564q97 -59 209 -59q171 0 292.5 121.5 t121.5 292.5q0 112 -59 209z" />
119 | <glyph unicode="&#xe091;" d="M1200 400h-600v-301l-600 448l600 453v-300h600v-300z" />
120 | <glyph unicode="&#xe092;" d="M600 400h-600v300h600v300l600 -453l-600 -448v301z" />
121 | <glyph unicode="&#xe093;" d="M1098 600h-298v-600h-300v600h-296l450 600z" />
122 | <glyph unicode="&#xe094;" d="M998 600l-449 -600l-445 600h296v600h300v-600h298z" />
123 | <glyph unicode="&#xe095;" d="M600 199v301q-95 -2 -183 -20t-170 -52t-147 -92.5t-100 -135.5q6 132 41 238.5t103.5 193t184 138t271.5 59.5v271l600 -453z" />
124 | <glyph unicode="&#xe096;" d="M1200 1200h-400l129 -129l-294 -294l142 -142l294 294l129 -129v400zM565 423l-294 -294l129 -129h-400v400l129 -129l294 294z" />
125 | <glyph unicode="&#xe097;" d="M871 730l129 -130h-400v400l129 -129l295 295l142 -141zM200 600h400v-400l-129 130l-295 -295l-142 141l295 295z" />
126 | <glyph unicode="&#xe101;" d="M600 1177q118 0 224.5 -45.5t184 -123t123 -184t45.5 -224.5t-45.5 -224.5t-123 -184t-184 -123t-224.5 -45.5t-224.5 45.5t-184 123t-123 184t-45.5 224.5t45.5 224.5t123 184t184 123t224.5 45.5zM686 549l58 302q4 20 -8 34.5t-33 14.5h-207q-20 0 -32 -14.5t-8 -34.5 l58 -302q4 -20 21.5 -34.5t37.5 -14.5h54q20 0 37.5 14.5t21.5 34.5zM700 400h-200v-100h200v100z" />
127 | <glyph unicode="&#xe102;" d="M1200 900h-111v6t-1 15t-3 18l-34 172q-11 39 -41.5 63t-69.5 24q-32 0 -61 -17l-239 -144q-22 -13 -40 -35q-19 24 -40 36l-238 144q-33 18 -62 18q-39 0 -69.5 -23t-40.5 -61l-35 -177q-2 -8 -3 -18t-1 -15v-6h-111v-100h100v-200h400v300h200v-300h400v200h100v100z M731 900l202 197q5 -12 12 -32.5t23 -64t25 -72t7 -28.5h-269zM481 900h-281q-3 0 14 48t35 96l18 47zM100 0h400v400h-400v-400zM700 400h400v-400h-400v400z" />
128 | <glyph unicode="&#xe103;" d="M0 121l216 193q-9 53 -13 83t-5.5 94t9 113t38.5 114t74 124q47 60 99.5 102.5t103 68t127.5 48t145.5 37.5t184.5 43.5t220 58.5q0 -189 -22 -343t-59 -258t-89 -181.5t-108.5 -120t-122 -68t-125.5 -30t-121.5 -1.5t-107.5 12.5t-87.5 17t-56.5 7.5l-99 -55l-201 -202 v143zM692 611q70 38 118.5 69.5t102 79t99 111.5t86.5 148q22 50 24 60t-6 19q-7 5 -17 5t-26.5 -14.5t-33.5 -39.5q-35 -51 -113.5 -108.5t-139.5 -89.5l-61 -32q-369 -197 -458 -401q-48 -111 -28.5 -117.5t86.5 76.5q55 66 367 234z" />
129 | <glyph unicode="&#xe105;" d="M1261 600l-26 -40q-6 -10 -20 -30t-49 -63.5t-74.5 -85.5t-97 -90t-116.5 -83.5t-132.5 -59t-145.5 -23.5t-145.5 23.5t-132.5 59t-116.5 83.5t-97 90t-74.5 85.5t-49 63.5t-20 30l-26 40l26 40q6 10 20 30t49 63.5t74.5 85.5t97 90t116.5 83.5t132.5 59t145.5 23.5 t145.5 -23.5t132.5 -59t116.5 -83.5t97 -90t74.5 -85.5t49 -63.5t20 -30zM600 240q64 0 123.5 20t100.5 45.5t85.5 71.5t66.5 75.5t58 81.5t47 66q-1 1 -28.5 37.5t-42 55t-43.5 53t-57.5 63.5t-58.5 54q49 -74 49 -163q0 -124 -88 -212t-212 -88t-212 88t-88 212 q0 85 46 158q-102 -87 -226 -258q7 -10 40.5 -58t56 -78.5t68 -77.5t87.5 -75t103 -49.5t125 -21.5zM484 762l-107 -106q49 -124 154 -191l105 105q-37 24 -75 72t-57 84z" />
130 | <glyph unicode="&#xe106;" d="M906 1200l-314 -1200h-148l37 143q-82 21 -165 71.5t-140 102t-109.5 112t-72 88.5t-29.5 43l-26 40l26 40q6 10 20 30t49 63.5t74.5 85.5t97 90t116.5 83.5t132.5 59t145.5 23.5q61 0 121 -17l37 142h148zM1261 600l-26 -40q-7 -12 -25.5 -38t-63.5 -79.5t-95.5 -102.5 t-124 -100t-146.5 -79l38 145q22 15 44.5 34t46 44t40.5 44t41 50.5t33.5 43.5t33 44t24.5 34q-97 127 -140 175l39 146q67 -54 131.5 -125.5t87.5 -103.5t36 -52zM513 264l37 141q-107 18 -178.5 101.5t-71.5 193.5q0 85 46 158q-102 -87 -226 -258q210 -282 393 -336z M484 762l-107 -106q49 -124 154 -191l47 47l23 87q-30 28 -59 69t-44 68z" />
131 | <glyph unicode="&#xe107;" d="M-47 0h1294q37 0 50.5 35.5t-7.5 67.5l-642 1056q-20 33 -48 36t-48 -29l-642 -1066q-21 -32 -7.5 -66t50.5 -34zM700 200v100h-200v-100h-345l445 723l445 -723h-345zM700 700h-200v-100l100 -300l100 300v100z" />
132 | <glyph unicode="&#xe108;" d="M800 711l363 -325q15 -14 26 -38.5t11 -44.5v-41q0 -20 -12 -26.5t-29 5.5l-359 249v-263q100 -91 100 -113v-64q0 -21 -13 -29t-32 1l-94 78h-222l-94 -78q-19 -9 -32 -1t-13 29v64q0 22 100 113v263l-359 -249q-17 -12 -29 -5.5t-12 26.5v41q0 20 11 44.5t26 38.5 l363 325v339q0 62 44 106t106 44t106 -44t44 -106v-339z" />
133 | <glyph unicode="&#xe110;" d="M941 800l-600 -600h-341v200h259l600 600h241v198l300 -295l-300 -300v197h-159zM381 678l141 142l-181 180h-341v-200h259zM1100 598l300 -295l-300 -300v197h-241l-181 181l141 142l122 -123h159v198z" />
134 | <glyph unicode="&#xe111;" d="M100 1100h1000q41 0 70.5 -29.5t29.5 -70.5v-600q0 -41 -29.5 -70.5t-70.5 -29.5h-596l-304 -300v300h-100q-41 0 -70.5 29.5t-29.5 70.5v600q0 41 29.5 70.5t70.5 29.5z" />
135 | <glyph unicode="&#xe112;" d="M400 900h-300v300h300v-300zM1100 900h-300v300h300v-300zM1100 800v-200q0 -42 -3 -83t-15 -104t-31.5 -116t-58 -109.5t-89 -96.5t-129 -65.5t-174.5 -25.5t-174.5 25.5t-129 65.5t-89 96.5t-58 109.5t-31.5 116t-15 104t-3 83v200h300v-250q0 -113 6 -145 q17 -92 102 -117q39 -11 92 -11q37 0 66.5 5.5t50 15.5t36 24t24 31.5t14 37.5t7 42t2.5 45t0 47v25v250h300z" />
136 | <glyph unicode="&#xe113;" d="M902 184l226 227l-578 579l-580 -579l227 -227l352 353z" />
137 | <glyph unicode="&#xe114;" d="M650 218l578 579l-226 227l-353 -353l-352 353l-227 -227z" />
138 | <glyph unicode="&#xe115;" d="M1198 400v600h-796l215 -200h381v-400h-198l299 -283l299 283h-200zM-198 700l299 283l300 -283h-203v-400h385l215 -200h-800v600h-196z" />
139 | <glyph unicode="&#xe116;" d="M1050 1200h94q20 0 35 -14.5t15 -35.5t-15 -35.5t-35 -14.5h-54l-201 -961q-2 -4 -6 -10.5t-19 -17.5t-33 -11h-31v-50q0 -20 -14.5 -35t-35.5 -15t-35.5 15t-14.5 35v50h-300v-50q0 -20 -14.5 -35t-35.5 -15t-35.5 15t-14.5 35v50h-50q-21 0 -35.5 15t-14.5 35 q0 21 14.5 35.5t35.5 14.5h535l48 200h-633q-32 0 -54.5 21t-27.5 43l-100 475q-5 24 10 42q14 19 39 19h896l38 162q5 17 18.5 27.5t30.5 10.5z" />
140 | <glyph unicode="&#xe117;" d="M1200 1000v-100h-1200v100h200q0 41 29.5 70.5t70.5 29.5h300q41 0 70.5 -29.5t29.5 -70.5h500zM0 800h1200v-800h-1200v800z" />
141 | <glyph unicode="&#xe118;" d="M201 800l-200 -400v600h200q0 41 29.5 70.5t70.5 29.5h300q41 0 70.5 -29.5t29.5 -70.5h500v-200h-1000zM1501 700l-300 -700h-1200l300 700h1200z" />
142 | <glyph unicode="&#xe119;" d="M302 300h198v600h-198l298 300l298 -300h-198v-600h198l-298 -300z" />
143 | <glyph unicode="&#xe120;" d="M900 303v197h-600v-197l-300 297l300 298v-198h600v198l300 -298z" />
144 | <glyph unicode="&#xe121;" d="M31 400l172 739q5 22 23 41.5t38 19.5h672q19 0 37.5 -22.5t23.5 -45.5l172 -732h-1138zM100 300h1000q41 0 70.5 -29.5t29.5 -70.5v-100q0 -41 -29.5 -70.5t-70.5 -29.5h-1000q-41 0 -70.5 29.5t-29.5 70.5v100q0 41 29.5 70.5t70.5 29.5zM900 200h-100v-100h100v100z M1100 200h-100v-100h100v100z" />
145 | <glyph unicode="&#xe122;" d="M1100 200v850q0 21 14.5 35.5t35.5 14.5q20 0 35 -14.5t15 -35.5v-850q0 -20 -15 -35t-35 -15q-21 0 -35.5 15t-14.5 35zM325 800l675 250v-850l-675 200h-38l47 -276q2 -12 -3 -17.5t-11 -6t-21 -0.5h-8h-83q-20 0 -34.5 14t-18.5 35q-56 337 -56 351v250v5 q0 13 0.5 18.5t2.5 13t8 10.5t15 3h200zM-101 600v50q0 24 25 49t50 38l25 13v-250l-11 5.5t-24 14t-30 21.5t-24 27.5t-11 31.5z" />
146 | <glyph unicode="&#xe124;" d="M445 1180l-45 -233l-224 78l78 -225l-233 -44l179 -156l-179 -155l233 -45l-78 -224l224 78l45 -233l155 179l155 -179l45 233l224 -78l-78 224l234 45l-180 155l180 156l-234 44l78 225l-224 -78l-45 233l-155 -180z" />
147 | <glyph unicode="&#xe125;" d="M700 1200h-50q-27 0 -51 -20t-38 -48l-96 -198l-145 -196q-20 -26 -20 -63v-400q0 -75 100 -75h61q123 -100 139 -100h250q46 0 83 57l238 344q29 31 29 74v100q0 44 -30.5 84.5t-69.5 40.5h-328q28 118 28 125v150q0 44 -30.5 84.5t-69.5 40.5zM700 925l-50 -225h450 v-125l-250 -375h-214l-136 100h-100v375l150 212l100 213h50v-175zM0 800v-600h200v600h-200z" />
148 | <glyph unicode="&#xe126;" d="M700 0h-50q-27 0 -51 20t-38 48l-96 198l-145 196q-20 26 -20 63v400q0 75 100 75h61q123 100 139 100h250q46 0 83 -57l238 -344q29 -31 29 -74v-100q0 -44 -30.5 -84.5t-69.5 -40.5h-328q28 -118 28 -125v-150q0 -44 -30.5 -84.5t-69.5 -40.5zM200 400h-200v600h200 v-600zM700 275l-50 225h450v125l-250 375h-214l-136 -100h-100v-375l150 -212l100 -213h50v175z" />
149 | <glyph unicode="&#xe127;" d="M364 873l362 230q14 6 25 6q17 0 29 -12l109 -112q14 -14 14 -34q0 -18 -11 -32l-85 -121h302q85 0 138.5 -38t53.5 -110t-54.5 -111t-138.5 -39h-107l-130 -339q-7 -22 -20.5 -41.5t-28.5 -19.5h-341q-7 0 -90 81t-83 94v525q0 17 14 35.5t28 28.5zM408 792v-503 l100 -89h293l131 339q6 21 19.5 41t28.5 20h203q16 0 25 15t9 36q0 20 -9 34.5t-25 14.5h-457h-6.5h-7.5t-6.5 0.5t-6 1t-5 1.5t-5.5 2.5t-4 4t-4 5.5q-5 12 -5 20q0 14 10 27l147 183l-86 83zM208 200h-200v600h200v-600z" />
150 | <glyph unicode="&#xe128;" d="M475 1104l365 -230q7 -4 16.5 -10.5t26 -26t16.5 -36.5v-526q0 -13 -85.5 -93.5t-93.5 -80.5h-342q-15 0 -28.5 20t-19.5 41l-131 339h-106q-84 0 -139 39t-55 111t54 110t139 37h302l-85 121q-11 16 -11 32q0 21 14 34l109 113q13 12 29 12q11 0 25 -6zM370 946 l145 -184q10 -11 10 -26q0 -11 -5 -20q-1 -3 -3.5 -5.5l-4 -4t-5 -2.5t-5.5 -1.5t-6.5 -1t-6.5 -0.5h-7.5h-6.5h-476v-100h222q15 0 28.5 -20.5t19.5 -40.5l131 -339h293l106 89v502l-342 237zM1199 201h-200v600h200v-600z" />
151 | <glyph unicode="&#xe129;" d="M1100 473v342q0 15 -20 28.5t-41 19.5l-339 131v106q0 84 -39 139t-111 55t-110 -53.5t-38 -138.5v-302l-121 84q-15 12 -33.5 11.5t-32.5 -13.5l-112 -110q-22 -22 -6 -53l230 -363q4 -6 10.5 -15.5t26 -25t36.5 -15.5h525q13 0 94 83t81 90zM911 400h-503l-236 339 l83 86l183 -146q22 -18 47 -5q3 1 5.5 3.5l4 4t2.5 5t1.5 5.5t1 6.5t0.5 6v7.5v7v456q0 22 25 31t50 -0.5t25 -30.5v-202q0 -16 20 -29.5t41 -19.5l339 -130v-294zM1000 200v-200h-600v200h600z" />
152 | <glyph unicode="&#xe130;" d="M305 1104v200h600v-200h-600zM605 310l339 131q20 6 40.5 19.5t20.5 28.5v342q0 7 -81 90t-94 83h-525q-17 0 -35.5 -14t-28.5 -28l-10 -15l-230 -362q-15 -31 7 -53l112 -110q13 -13 32 -13.5t34 10.5l121 85l-1 -302q0 -84 38.5 -138t110.5 -54t111 55t39 139v106z M905 804v-294l-340 -130q-20 -6 -40 -20t-20 -29v-202q0 -22 -25 -31t-50 0t-25 31v456v14.5t-1.5 11.5t-5 12t-9.5 7q-24 13 -46 -5l-184 -146l-83 86l237 339h503z" />
153 | <glyph unicode="&#xe131;" d="M603 1195q162 0 299.5 -80t217.5 -218t80 -300t-80 -299.5t-217.5 -217.5t-299.5 -80t-300 80t-218 217.5t-80 299.5q0 122 47.5 232.5t127.5 190.5t190.5 127.5t232.5 47.5zM598 701h-298v-201h300l-2 -194l402 294l-402 298v-197z" />
154 | <glyph unicode="&#xe132;" d="M597 1195q122 0 232.5 -47.5t190.5 -127.5t127.5 -190.5t47.5 -232.5q0 -162 -80 -299.5t-218 -217.5t-300 -80t-299.5 80t-217.5 217.5t-80 299.5q0 122 47.5 232.5t127.5 190.5t190.5 127.5t231.5 47.5zM200 600l400 -294v194h302v201h-300v197z" />
155 | <glyph unicode="&#xe133;" d="M603 1195q121 0 231.5 -47.5t190.5 -127.5t127.5 -190.5t47.5 -232.5q0 -162 -80 -299.5t-217.5 -217.5t-299.5 -80t-300 80t-218 217.5t-80 299.5q0 122 47.5 232.5t127.5 190.5t190.5 127.5t232.5 47.5zM300 600h200v-300h200v300h200l-300 400z" />
156 | <glyph unicode="&#xe134;" d="M603 1195q121 0 231.5 -47.5t190.5 -127.5t127.5 -190.5t47.5 -232.5q0 -162 -80 -299.5t-217.5 -217.5t-299.5 -80t-300 80t-218 217.5t-80 299.5q0 122 47.5 232.5t127.5 190.5t190.5 127.5t232.5 47.5zM500 900v-300h-200l300 -400l300 400h-200v300h-200z" />
157 | <glyph unicode="&#xe135;" d="M603 1195q121 0 231.5 -47.5t190.5 -127.5t127.5 -190.5t47.5 -232.5q0 -162 -80 -299.5t-217.5 -217.5t-299.5 -80t-300 80t-218 217.5t-80 299.5q0 122 47.5 232.5t127.5 190.5t190.5 127.5t232.5 47.5zM627 1101q-15 -12 -36.5 -21t-34.5 -12t-44 -8t-39 -6 q-15 -3 -45.5 0.5t-45.5 -2.5q-21 -7 -52 -26.5t-34 -34.5q-3 -11 6.5 -22.5t8.5 -18.5q-3 -34 -27.5 -90.5t-29.5 -79.5q-8 -33 5.5 -92.5t7.5 -87.5q0 -9 17 -44t16 -60q12 0 23 -5.5t23 -15t20 -13.5q24 -12 108 -42q22 -8 53 -31.5t59.5 -38.5t57.5 -11q8 -18 -15 -55 t-20 -57q42 -71 87 -80q0 -6 -3 -15.5t-3.5 -14.5t4.5 -17q102 -2 221 112q30 29 47 47t34.5 49t20.5 62q-14 9 -37 9.5t-36 7.5q-14 7 -49 15t-52 19q-9 0 -39.5 -0.5t-46.5 -1.5t-39 -6.5t-39 -16.5q-50 -35 -66 -12q-4 2 -3.5 25.5t0.5 25.5q-6 13 -26.5 17t-24.5 7 q2 22 -2 41t-16.5 28t-38.5 -20q-23 -25 -42 4q-19 28 -8 58q6 16 22 22q6 -1 26 -1.5t33.5 -4t19.5 -13.5q12 -19 32 -37.5t34 -27.5l14 -8q0 3 9.5 39.5t5.5 57.5q-4 23 14.5 44.5t22.5 31.5q5 14 10 35t8.5 31t15.5 22.5t34 21.5q-6 18 10 37q8 0 23.5 -1.5t24.5 -1.5 t20.5 4.5t20.5 15.5q-10 23 -30.5 42.5t-38 30t-49 26.5t-43.5 23q11 41 1 44q31 -13 58.5 -14.5t39.5 3.5l11 4q6 36 -17 53.5t-64 28.5t-56 23q-19 -3 -37 0zM613 994q0 -18 8 -42.5t16.5 -44t9.5 -23.5q-9 2 -31 5t-36 5t-32 8t-30 14q3 12 16 30t16 25q10 -10 18.5 -10 t14 6t14.5 14.5t16 12.5z" />
158 | <glyph unicode="&#xe137;" horiz-adv-x="1220" d="M100 1196h1000q41 0 70.5 -29.5t29.5 -70.5v-100q0 -41 -29.5 -70.5t-70.5 -29.5h-1000q-41 0 -70.5 29.5t-29.5 70.5v100q0 41 29.5 70.5t70.5 29.5zM1100 1096h-200v-100h200v100zM100 796h1000q41 0 70.5 -29.5t29.5 -70.5v-100q0 -41 -29.5 -70.5t-70.5 -29.5h-1000 q-41 0 -70.5 29.5t-29.5 70.5v100q0 41 29.5 70.5t70.5 29.5zM1100 696h-500v-100h500v100zM100 396h1000q41 0 70.5 -29.5t29.5 -70.5v-100q0 -41 -29.5 -70.5t-70.5 -29.5h-1000q-41 0 -70.5 29.5t-29.5 70.5v100q0 41 29.5 70.5t70.5 29.5zM1100 296h-300v-100h300v100z " />
159 | <glyph unicode="&#xe138;" d="M1100 1200v-100h-1000v100h1000zM150 1000h900l-350 -500v-300l-200 -200v500z" />
160 | <glyph unicode="&#xe140;" d="M329 729l142 142l-200 200l129 129h-400v-400l129 129zM1200 1200v-400l-129 129l-200 -200l-142 142l200 200l-129 129h400zM271 129l129 -129h-400v400l129 -129l200 200l142 -142zM1071 271l129 129v-400h-400l129 129l-200 200l142 142z" />
161 | <glyph unicode="&#xe141;" d="M596 1192q162 0 299 -80t217 -217t80 -299t-80 -299t-217 -217t-299 -80t-299 80t-217 217t-80 299t80 299t217 217t299 80zM596 1010q-171 0 -292.5 -121.5t-121.5 -292.5q0 -172 121.5 -293t292.5 -121t292.5 121t121.5 293q0 171 -121.5 292.5t-292.5 121.5zM455 905 q22 0 38 -16t16 -39t-16 -39t-38 -16q-23 0 -39 16.5t-16 38.5t16 38.5t39 16.5zM708 821l1 1q-9 14 -9 28q0 22 16 38.5t39 16.5q22 0 38 -16t16 -39t-16 -39t-38 -16q-14 0 -29 10l-55 -145q17 -22 17 -51q0 -36 -25.5 -61.5t-61.5 -25.5t-61.5 25.5t-25.5 61.5 q0 32 20.5 56.5t51.5 29.5zM855 709q23 0 38.5 -15.5t15.5 -38.5t-16 -39t-38 -16q-23 0 -39 16t-16 39q0 22 16 38t39 16zM345 709q23 0 39 -16t16 -38q0 -23 -16 -39t-39 -16q-22 0 -38 16t-16 39t15.5 38.5t38.5 15.5z" />
162 | <glyph unicode="&#xe143;" d="M649 54l-16 22q-90 125 -293 323q-71 70 -104.5 105.5t-77 89.5t-61 99t-17.5 91q0 131 98.5 229.5t230.5 98.5q143 0 241 -129q103 129 246 129q129 0 226 -98.5t97 -229.5q0 -46 -17.5 -91t-61 -99t-77 -89.5t-104.5 -105.5q-203 -198 -293 -323zM844 524l12 12 q64 62 97.5 97t64.5 79t31 72q0 71 -48 119t-105 48q-74 0 -132 -82l-118 -171l-114 174q-51 79 -123 79q-60 0 -109.5 -49t-49.5 -118q0 -27 30.5 -70t61.5 -75.5t95 -94.5l22 -22q93 -90 190 -201q82 92 195 203z" />
163 | <glyph unicode="&#xe144;" d="M476 406l19 -17l105 105l-212 212l389 389l247 -247l-95 -96l18 -18q46 -46 77 -99l29 29q35 35 62.5 88t27.5 96q0 93 -66 159l-141 141q-66 66 -159 66q-95 0 -159 -66l-283 -283q-66 -64 -66 -159q0 -93 66 -159zM123 193l141 -141q66 -66 159 -66q95 0 159 66 l283 283q66 66 66 159t-66 159l-141 141q-12 12 -19 17l-105 -105l212 -212l-389 -389l-247 248l95 95l-18 18q-46 45 -75 101l-55 -55q-66 -66 -66 -159q0 -94 66 -160z" />
164 | <glyph unicode="&#xe145;" d="M200 100v953q0 21 30 46t81 48t129 38t163 15t162 -15t127 -38t79 -48t29 -46v-953q0 -41 -29.5 -70.5t-70.5 -29.5h-600q-41 0 -70.5 29.5t-29.5 70.5zM900 1000h-600v-700h600v700zM600 46q43 0 73.5 30.5t30.5 73.5t-30.5 73.5t-73.5 30.5t-73.5 -30.5t-30.5 -73.5 t30.5 -73.5t73.5 -30.5z" />
165 | <glyph unicode="&#xe148;" d="M700 1029v-307l64 -14q34 -7 64 -16.5t70 -31.5t67.5 -52t47.5 -80.5t20 -112.5q0 -139 -89 -224t-244 -96v-77h-100v78q-152 17 -237 104q-40 40 -52.5 93.5t-15.5 139.5h139q5 -77 48.5 -126.5t117.5 -64.5v335l-27 7q-46 14 -79 26.5t-72 36t-62.5 52t-40 72.5 t-16.5 99q0 92 44 159.5t109 101t144 40.5v78h100v-79q38 -4 72.5 -13.5t75.5 -31.5t71 -53.5t51.5 -84t24.5 -118.5h-159q-8 72 -35 109.5t-101 50.5zM600 755v274q-61 -8 -97.5 -37.5t-36.5 -102.5q0 -29 8 -51t16.5 -34t29.5 -22.5t31 -13.5t38 -10q7 -2 11 -3zM700 548 v-311q170 18 170 151q0 64 -44 99.5t-126 60.5z" />
166 | <glyph unicode="&#xe149;" d="M866 300l50 -147q-41 -25 -80.5 -36.5t-59 -13t-61.5 -1.5q-23 0 -128 33t-155 29q-39 -4 -82 -17t-66 -25l-24 -11l-55 145l16.5 11t15.5 10t13.5 9.5t14.5 12t14.5 14t17.5 18.5q48 55 54 126.5t-30 142.5h-221v100h166q-24 49 -44 104q-10 26 -14.5 55.5t-3 72.5 t25 90t68.5 87q97 88 263 88q129 0 230 -89t101 -208h-153q0 52 -34 89.5t-74 51.5t-76 14q-37 0 -79 -14.5t-62 -35.5q-41 -44 -41 -101q0 -11 2.5 -24.5t5.5 -24t9.5 -26.5t10.5 -25t14 -27.5t14 -25.5t15.5 -27t13.5 -24h242v-100h-197q8 -50 -2.5 -115t-31.5 -94 q-41 -59 -99 -113q35 11 84 18t70 7q32 1 102 -16t104 -17q76 0 136 30z" />
167 | <glyph unicode="&#xe150;" d="M300 0l298 300h-198v900h-200v-900h-198zM900 1200l298 -300h-198v-900h-200v900h-198z" />
168 | <glyph unicode="&#xe151;" d="M400 300h198l-298 -300l-298 300h198v900h200v-900zM1000 1200v-500h-100v100h-100v-100h-100v500h300zM901 1100h-100v-200h100v200zM700 500h300v-200h-99v-100h-100v100h99v100h-200v100zM800 100h200v-100h-300v200h100v-100z" />
169 | <glyph unicode="&#xe152;" d="M400 300h198l-298 -300l-298 300h198v900h200v-900zM1000 1200v-200h-99v-100h-100v100h99v100h-200v100h300zM800 800h200v-100h-300v200h100v-100zM700 500h300v-500h-100v100h-100v-100h-100v500zM801 200h100v200h-100v-200z" />
170 | <glyph unicode="&#xe153;" d="M300 0l298 300h-198v900h-200v-900h-198zM900 1100h-100v100h200v-500h-100v400zM1100 500v-500h-100v100h-200v400h300zM1001 400h-100v-200h100v200z" />
171 | <glyph unicode="&#xe154;" d="M300 0l298 300h-198v900h-200v-900h-198zM1100 1200v-500h-100v100h-200v400h300zM1001 1100h-100v-200h100v200zM900 400h-100v100h200v-500h-100v400z" />
172 | <glyph unicode="&#xe155;" d="M300 0l298 300h-198v900h-200v-900h-198zM900 1000h-200v200h200v-200zM1000 700h-300v200h300v-200zM1100 400h-400v200h400v-200zM1200 100h-500v200h500v-200z" />
173 | <glyph unicode="&#xe156;" d="M300 0l298 300h-198v900h-200v-900h-198zM1200 1000h-500v200h500v-200zM1100 700h-400v200h400v-200zM1000 400h-300v200h300v-200zM900 100h-200v200h200v-200z" />
174 | <glyph unicode="&#xe157;" d="M400 1100h300q162 0 281 -118.5t119 -281.5v-300q0 -165 -118.5 -282.5t-281.5 -117.5h-300q-165 0 -282.5 117.5t-117.5 282.5v300q0 165 117.5 282.5t282.5 117.5zM800 900h-500q-41 0 -70.5 -29.5t-29.5 -70.5v-500q0 -41 29.5 -70.5t70.5 -29.5h500q41 0 70.5 29.5 t29.5 70.5v500q0 41 -29.5 70.5t-70.5 29.5z" />
175 | <glyph unicode="&#xe158;" d="M700 0h-300q-163 0 -281.5 117.5t-118.5 282.5v300q0 163 119 281.5t281 118.5h300q165 0 282.5 -117.5t117.5 -282.5v-300q0 -165 -117.5 -282.5t-282.5 -117.5zM800 900h-500q-41 0 -70.5 -29.5t-29.5 -70.5v-500q0 -41 29.5 -70.5t70.5 -29.5h500q41 0 70.5 29.5 t29.5 70.5v500q0 41 -29.5 70.5t-70.5 29.5zM400 800v-500l333 250z" />
176 | <glyph unicode="&#xe159;" d="M0 400v300q0 163 117.5 281.5t282.5 118.5h300q163 0 281.5 -119t118.5 -281v-300q0 -165 -117.5 -282.5t-282.5 -117.5h-300q-165 0 -282.5 117.5t-117.5 282.5zM900 300v500q0 41 -29.5 70.5t-70.5 29.5h-500q-41 0 -70.5 -29.5t-29.5 -70.5v-500q0 -41 29.5 -70.5 t70.5 -29.5h500q41 0 70.5 29.5t29.5 70.5zM800 700h-500l250 -333z" />
177 | <glyph unicode="&#xe160;" d="M1100 700v-300q0 -162 -118.5 -281t-281.5 -119h-300q-165 0 -282.5 118.5t-117.5 281.5v300q0 165 117.5 282.5t282.5 117.5h300q165 0 282.5 -117.5t117.5 -282.5zM900 300v500q0 41 -29.5 70.5t-70.5 29.5h-500q-41 0 -70.5 -29.5t-29.5 -70.5v-500q0 -41 29.5 -70.5 t70.5 -29.5h500q41 0 70.5 29.5t29.5 70.5zM550 733l-250 -333h500z" />
178 | <glyph unicode="&#xe161;" d="M500 1100h400q165 0 282.5 -117.5t117.5 -282.5v-300q0 -165 -117.5 -282.5t-282.5 -117.5h-400v200h500q41 0 70.5 29.5t29.5 70.5v500q0 41 -29.5 70.5t-70.5 29.5h-500v200zM700 550l-400 -350v200h-300v300h300v200z" />
179 | <glyph unicode="&#xe162;" d="M403 2l9 -1q13 0 26 16l538 630q15 19 6 36q-8 18 -32 16h-300q1 4 78 219.5t79 227.5q2 17 -6 27l-8 8h-9q-16 0 -25 -15q-4 -5 -98.5 -111.5t-228 -257t-209.5 -238.5q-17 -19 -7 -40q10 -19 32 -19h302q-155 -438 -160 -458q-5 -21 4 -32z" />
180 | <glyph unicode="&#xe163;" d="M800 200h-500q-41 0 -70.5 29.5t-29.5 70.5v500q0 41 29.5 70.5t70.5 29.5h500v185q-14 4 -114 7.5t-193 5.5l-93 2q-165 0 -282.5 -117.5t-117.5 -282.5v-300q0 -165 117.5 -282.5t282.5 -117.5h300q47 0 100 15v185zM900 200v200h-300v300h300v200l400 -350z" />
181 | <glyph unicode="&#xe164;" d="M1200 700l-149 149l-342 -353l-213 213l353 342l-149 149h500v-500zM1022 571l-122 -123v-148q0 -41 -29.5 -70.5t-70.5 -29.5h-500q-41 0 -70.5 29.5t-29.5 70.5v500q0 41 29.5 70.5t70.5 29.5h156l118 122l-74 78h-100q-165 0 -282.5 -117.5t-117.5 -282.5v-300 q0 -165 117.5 -282.5t282.5 -117.5h300q163 0 281.5 117.5t118.5 282.5v98z" />
182 | <glyph unicode="&#xe165;" d="M600 1196q162 0 299 -80t217 -217t80 -299t-80 -299t-217 -217t-299 -80t-299 80t-217 217t-80 299t80 299t217 217t299 80zM600 1014q-171 0 -292.5 -121.5t-121.5 -292.5t121.5 -292.5t292.5 -121.5t292.5 121.5t121.5 292.5t-121.5 292.5t-292.5 121.5zM600 794 q80 0 137 -57t57 -137t-57 -137t-137 -57t-137 57t-57 137t57 137t137 57z" />
183 | <glyph unicode="&#xe166;" d="M700 800v400h-300v-400h-300l445 -500l450 500h-295zM25 300h1048q11 0 19 -7.5t8 -17.5v-275h-1100v275q0 11 7 18t18 7zM1000 200h-100v-50h100v50z" />
184 | <glyph unicode="&#xe167;" d="M400 700v-300h300v300h295l-445 500l-450 -500h300zM25 300h1048q11 0 19 -7.5t8 -17.5v-275h-1100v275q0 11 7 18t18 7zM1000 200h-100v-50h100v50z" />
185 | <glyph unicode="&#xe168;" d="M405 400l596 596l-154 155l-442 -442l-150 151l-155 -155zM25 300h1048q11 0 19 -7.5t8 -17.5v-275h-1100v275q0 11 7 18t18 7zM1000 200h-100v-50h100v50z" />
186 | <glyph unicode="&#xe169;" d="M409 1103l-97 97l-212 -212l97 -98zM650 861l-149 149l-212 -212l149 -149l-238 -248h700v699zM25 300h1048q11 0 19 -7.5t8 -17.5v-275h-1100v275q0 11 7 18t18 7zM1000 200h-100v-50h100v50z" />
187 | <glyph unicode="&#xe170;" d="M539 950l-149 -149l212 -212l149 148l248 -237v700h-699zM297 709l-97 -97l212 -212l98 97zM25 300h1048q11 0 19 -7.5t8 -17.5v-275h-1100v275q0 11 7 18t18 7zM1000 200h-100v-50h100v50z" />
188 | <glyph unicode="&#xe171;" d="M1200 1199v-1079l-475 272l-310 -393v416h-392zM1166 1148l-672 -712v-226z" />
189 | <glyph unicode="&#xe172;" d="M1100 1000v-850q0 -21 -15 -35.5t-35 -14.5h-150v400h-700v-400h-150q-21 0 -35.5 14.5t-14.5 35.5v1000q0 20 14.5 35t35.5 15h250v-300h500v300h100zM700 1200h-100v-200h100v200z" />
190 | <glyph unicode="&#xe173;" d="M578 500h-378v-400h-150q-21 0 -35.5 14.5t-14.5 35.5v1000q0 20 14.5 35t35.5 15h250v-300h500v300h100l200 -200v-218l-276 -275l-120 120zM700 1200h-100v-200h100v200zM1300 538l-475 -476l-244 244l123 123l120 -120l353 352z" />
191 | <glyph unicode="&#xe174;" d="M529 500h-329v-400h-150q-21 0 -35.5 14.5t-14.5 35.5v1000q0 20 14.5 35t35.5 15h250v-300h500v300h100l200 -200v-269l-103 -103l-170 170zM700 1200h-100v-200h100v200zM1167 6l-170 170l-170 -170l-127 127l170 170l-170 170l127 127l170 -170l170 170l127 -128 l-170 -169l170 -170z" />
192 | <glyph unicode="&#xe175;" d="M700 500h-500v-400h-150q-21 0 -35.5 14.5t-14.5 35.5v1000q0 20 14.5 35t35.5 15h250v-300h500v300h100l200 -200v-300h-400v-200zM700 1000h-100v200h100v-200zM1000 600h-200v-300h-200l300 -300l300 300h-200v300z" />
193 | <glyph unicode="&#xe176;" d="M602 500h-402v-400h-150q-21 0 -35.5 14.5t-14.5 35.5v1000q0 20 14.5 35t35.5 15h250v-300h500v300h100l200 -200v-402l-200 200zM700 1000h-100v200h100v-200zM1000 300h200l-300 300l-300 -300h200v-300h200v300z" />
194 | <glyph unicode="&#xe177;" d="M1200 900v150q0 21 -14.5 35.5t-35.5 14.5h-1100q-21 0 -35.5 -14.5t-14.5 -35.5v-150h1200zM0 800v-550q0 -21 14.5 -35.5t35.5 -14.5h1100q21 0 35.5 14.5t14.5 35.5v550h-1200zM100 500h400v-200h-400v200z" />
195 | <glyph unicode="&#xe178;" d="M500 1000h400v198l300 -298l-300 -298v198h-400v200zM100 800v200h100v-200h-100zM400 800h-100v200h100v-200zM700 300h-400v-198l-300 298l300 298v-198h400v-200zM800 500h100v-200h-100v200zM1000 500v-200h100v200h-100z" />
196 | <glyph unicode="&#xe179;" d="M1200 50v1106q0 31 -18 40.5t-44 -7.5l-276 -117q-25 -16 -43.5 -50.5t-18.5 -65.5v-359q0 -29 10.5 -55.5t25 -43t29 -28.5t25.5 -18l10 -5v-397q0 -21 14.5 -35.5t35.5 -14.5h200q21 0 35.5 14.5t14.5 35.5zM550 1200l50 -100v-400l-100 -203v-447q0 -21 -14.5 -35.5 t-35.5 -14.5h-200q-21 0 -35.5 14.5t-14.5 35.5v447l-100 203v400l50 100l50 -100v-300h100v300l50 100l50 -100v-300h100v300z" />
197 | <glyph unicode="&#xe180;" d="M1100 106v888q0 22 25 34.5t50 13.5l25 2v56h-400v-56q75 0 87.5 -6t12.5 -44v-394h-500v394q0 38 12.5 44t87.5 6v56h-400v-56q4 0 11 -0.5t24 -3t30 -7t24 -15t11 -24.5v-888q0 -22 -25 -34.5t-50 -13.5l-25 -2v-56h400v56q-75 0 -87.5 6t-12.5 44v394h500v-394 q0 -38 -12.5 -44t-87.5 -6v-56h400v56q-4 0 -11 0.5t-24 3t-30 7t-24 15t-11 24.5z" />
198 | <glyph unicode="&#xe181;" d="M675 1000l-100 100h-375l-100 -100h400l200 -200v-98l295 98h105v200h-425zM500 300v500q0 41 -29.5 70.5t-70.5 29.5h-300q-41 0 -70.5 -29.5t-29.5 -70.5v-500q0 -41 29.5 -70.5t70.5 -29.5h300q41 0 70.5 29.5t29.5 70.5zM100 800h300v-200h-300v200zM700 565l400 133 v-163l-400 -133v163zM100 500h300v-200h-300v200zM805 300l295 98v-298h-425l-100 -100h-375l-100 100h400l200 200h105z" />
199 | <glyph unicode="&#xe182;" d="M179 1169l-162 -162q-1 -11 -0.5 -32.5t16 -90t46.5 -140t104 -177.5t175 -208q103 -103 207.5 -176t180 -103.5t137 -47t92.5 -16.5l31 1l163 162q16 17 13 40.5t-22 37.5l-192 136q-19 14 -45 12t-42 -19l-119 -118q-143 103 -267 227q-126 126 -227 268l118 118 q17 17 20 41.5t-11 44.5l-139 194q-14 19 -36.5 22t-40.5 -14z" />
200 | <glyph unicode="&#xe183;" d="M1200 712v200q-6 8 -19 20.5t-63 45t-112 57t-171 45t-235 20.5q-92 0 -175 -10.5t-141.5 -27t-108.5 -36.5t-81.5 -40t-53.5 -36.5t-31 -27.5l-9 -10v-200q0 -21 14.5 -33.5t34.5 -8.5l202 33q20 4 34.5 21t14.5 38v146q141 24 300 24t300 -24v-146q0 -21 14.5 -38 t34.5 -21l202 -33q20 -4 34.5 8.5t14.5 33.5zM800 650l365 -303q14 -14 24.5 -39.5t10.5 -45.5v-212q0 -21 -15 -35.5t-35 -14.5h-1100q-21 0 -35.5 14.5t-14.5 35.5v212q0 20 10.5 45.5t24.5 39.5l365 303v50q0 4 1 10.5t12 22.5t30 28.5t60 23t97 10.5t97 -10t60 -23.5 t30 -27.5t12 -24l1 -10v-50z" />
201 | <glyph unicode="&#xe184;" d="M175 200h950l-125 150v250l100 100v400h-100v-200h-100v200h-200v-200h-100v200h-200v-200h-100v200h-100v-400l100 -100v-250zM1200 100v-100h-1100v100h1100z" />
202 | <glyph unicode="&#xe185;" d="M600 1100h100q41 0 70.5 -29.5t29.5 -70.5v-1000h-300v1000q0 41 29.5 70.5t70.5 29.5zM1000 800h100q41 0 70.5 -29.5t29.5 -70.5v-700h-300v700q0 41 29.5 70.5t70.5 29.5zM400 0v400q0 41 -29.5 70.5t-70.5 29.5h-100q-41 0 -70.5 -29.5t-29.5 -70.5v-400h300z" />
203 | <glyph unicode="&#xe186;" d="M1200 800v-500q0 -124 -88 -212t-212 -88h-700q-124 0 -212 88t-88 212v500q0 124 88 212t212 88h700q124 0 212 -88t88 -212zM1000 900h-900v-700h900v700zM200 800v-300h200v-100h-200v-100h300v300h-200v100h200v100h-300zM800 800h-200v-500h200v100h100v300h-100 v100zM800 700v-300h-100v300h100z" />
204 | <glyph unicode="&#xe187;" d="M1200 800v-500q0 -124 -88 -212t-212 -88h-700q-124 0 -212 88t-88 212v500q0 124 88 212t212 88h700q124 0 212 -88t88 -212zM1000 900h-900v-700h900v700zM400 600h-100v200h-100v-500h100v200h100v-200h100v500h-100v-200zM800 800h-200v-500h200v100h100v300h-100 v100zM800 700v-300h-100v300h100z" />
205 | <glyph unicode="&#xe188;" d="M1200 800v-500q0 -124 -88 -212t-212 -88h-700q-124 0 -212 88t-88 212v500q0 124 88 212t212 88h700q124 0 212 -88t88 -212zM1000 900h-900v-700h900v700zM200 800v-500h300v100h-200v300h200v100h-300zM600 800v-500h300v100h-200v300h200v100h-300z" />
206 | <glyph unicode="&#xe189;" d="M1200 800v-500q0 -124 -88 -212t-212 -88h-700q-124 0 -212 88t-88 212v500q0 124 88 212t212 88h700q124 0 212 -88t88 -212zM1000 900h-900v-700h900v700zM500 700l-300 -150l300 -150v300zM600 400l300 150l-300 150v-300z" />
207 | <glyph unicode="&#xe190;" d="M1200 800v-500q0 -124 -88 -212t-212 -88h-700q-124 0 -212 88t-88 212v500q0 124 88 212t212 88h700q124 0 212 -88t88 -212zM1000 900h-900v-700h900v700zM900 800v-500h-700v500h700zM300 400h130q41 0 68 42t27 107t-28.5 108t-66.5 43h-130v-300zM800 700h-130 q-38 0 -66.5 -43t-28.5 -108t27 -107t68 -42h130v300z" />
208 | <glyph unicode="&#xe191;" d="M1200 800v-500q0 -124 -88 -212t-212 -88h-700q-124 0 -212 88t-88 212v500q0 124 88 212t212 88h700q124 0 212 -88t88 -212zM1000 900h-900v-700h900v700zM200 800v-300h200v-100h-200v-100h300v300h-200v100h200v100h-300zM800 300h100v500h-200v-100h100v-400z M601 300h100v100h-100v-100z" />
209 | <glyph unicode="&#xe192;" d="M1200 800v-500q0 -124 -88 -212t-212 -88h-700q-124 0 -212 88t-88 212v500q0 124 88 212t212 88h700q124 0 212 -88t88 -212zM1000 900h-900v-700h900v700zM300 700v100h-100v-500h300v400h-200zM800 300h100v500h-200v-100h100v-400zM401 400h-100v200h100v-200z M601 300h100v100h-100v-100z" />
210 | <glyph unicode="&#xe193;" d="M200 1100h700q124 0 212 -88t88 -212v-500q0 -124 -88 -212t-212 -88h-700q-124 0 -212 88t-88 212v500q0 124 88 212t212 88zM1000 900h-900v-700h900v700zM400 700h-200v100h300v-300h-99v-100h-100v100h99v200zM800 700h-100v100h200v-500h-100v400zM201 400h100v-100 h-100v100zM701 300h-100v100h100v-100z" />
211 | <glyph unicode="&#xe194;" d="M600 1196q162 0 299 -80t217 -217t80 -299t-80 -299t-217 -217t-299 -80t-299 80t-217 217t-80 299t80 299t217 217t299 80zM600 1014q-171 0 -292.5 -121.5t-121.5 -292.5t121.5 -292.5t292.5 -121.5t292.5 121.5t121.5 292.5t-121.5 292.5t-292.5 121.5zM800 700h-300 v-200h300v-100h-300l-100 100v200l100 100h300v-100z" />
212 | <glyph unicode="&#xe195;" d="M596 1196q162 0 299 -80t217 -217t80 -299t-80 -299t-217 -217t-299 -80t-299 80t-217 217t-80 299t80 299t217 217t299 80zM596 1014q-171 0 -292.5 -121.5t-121.5 -292.5t121.5 -292.5t292.5 -121.5t292.5 121.5t121.5 292.5t-121.5 292.5t-292.5 121.5zM800 700v-100 h-100v100h-200v-100h200v-100h-200v-100h-100v400h300zM800 400h-100v100h100v-100z" />
213 | <glyph unicode="&#xe197;" d="M800 300h128q120 0 205 86t85 208q0 120 -85 206.5t-205 86.5q-46 0 -90 -14q-44 97 -134.5 156.5t-200.5 59.5q-152 0 -260 -107.5t-108 -260.5q0 -25 2 -37q-66 -14 -108.5 -67.5t-42.5 -122.5q0 -80 56.5 -137t135.5 -57h222v300h400v-300zM700 200h200l-300 -300 l-300 300h200v300h200v-300z" />
214 | <glyph unicode="&#xe198;" d="M600 714l403 -403q94 26 154.5 104t60.5 178q0 121 -85 207.5t-205 86.5q-46 0 -90 -14q-44 97 -134.5 156.5t-200.5 59.5q-152 0 -260 -107.5t-108 -260.5q0 -25 2 -37q-66 -14 -108.5 -67.5t-42.5 -122.5q0 -80 56.5 -137t135.5 -57h8zM700 -100h-200v300h-200l300 300 l300 -300h-200v-300z" />
215 | <glyph unicode="&#xe199;" d="M700 200h400l-270 300h170l-270 300h170l-300 333l-300 -333h170l-270 -300h170l-270 -300h400v-155l-75 -45h350l-75 45v155z" />
216 | <glyph unicode="&#xe200;" d="M700 45v306q46 -30 100 -30q74 0 126.5 52.5t52.5 126.5q0 24 -9 55q50 32 79.5 83t29.5 112q0 90 -61.5 155.5t-150.5 71.5q-26 89 -99.5 145.5t-167.5 56.5q-116 0 -197.5 -81.5t-81.5 -197.5q0 -4 1 -12t1 -11q-14 2 -23 2q-74 0 -126.5 -52.5t-52.5 -126.5 q0 -53 28.5 -97t75.5 -65q-4 -16 -4 -38q0 -74 52.5 -126.5t126.5 -52.5q56 0 100 30v-306l-75 -45h350z" />
217 | <glyph unicode="&#x1f4bc;" d="M800 1000h300q41 0 70.5 -29.5t29.5 -70.5v-400h-500v100h-200v-100h-500v400q0 41 29.5 70.5t70.5 29.5h300v100q0 41 29.5 70.5t70.5 29.5h200q41 0 70.5 -29.5t29.5 -70.5v-100zM500 1000h200v100h-200v-100zM1200 400v-200q0 -41 -29.5 -70.5t-70.5 -29.5h-1000 q-41 0 -70.5 29.5t-29.5 70.5v200h1200z" />
218 | <glyph unicode="&#x1f4c5;" d="M1100 900v150q0 21 -14.5 35.5t-35.5 14.5h-150v100h-100v-100h-500v100h-100v-100h-150q-21 0 -35.5 -14.5t-14.5 -35.5v-150h1100zM0 800v-750q0 -20 14.5 -35t35.5 -15h1000q21 0 35.5 15t14.5 35v750h-1100zM100 600h100v-100h-100v100zM300 600h100v-100h-100v100z M500 600h100v-100h-100v100zM700 600h100v-100h-100v100zM900 600h100v-100h-100v100zM100 400h100v-100h-100v100zM300 400h100v-100h-100v100zM500 400h100v-100h-100v100zM700 400h100v-100h-100v100zM900 400h100v-100h-100v100zM100 200h100v-100h-100v100zM300 200 h100v-100h-100v100zM500 200h100v-100h-100v100zM700 200h100v-100h-100v100zM900 200h100v-100h-100v100z" />
219 | <glyph unicode="&#x1f4cc;" d="M902 1185l283 -282q15 -15 15 -36t-15 -35q-14 -15 -35 -15t-35 15l-36 35l-279 -267v-300l-212 210l-208 -207l-380 -303l303 380l207 208l-210 212h300l267 279l-35 36q-15 14 -15 35t15 35q14 15 35 15t35 -15z" />
220 | <glyph unicode="&#x1f4ce;" d="M518 119l69 -60l517 511q67 67 95 157t11 183q-16 87 -67 154t-130 103q-69 33 -152 33q-107 0 -197 -55q-40 -24 -111 -95l-512 -512q-68 -68 -81 -163t35 -173q35 -57 94 -89t129 -32q63 0 119 28q33 16 65 40.5t52.5 45.5t59.5 64q40 44 57 61l394 394q35 35 47 84 t-3 96q-27 87 -117 104q-20 2 -29 2q-46 0 -79.5 -17t-67.5 -51l-388 -396l-7 -7l69 -67l377 373q20 22 39 38q23 23 50 23q38 0 53 -36q16 -39 -20 -75l-547 -547q-52 -52 -125 -52q-55 0 -100 33t-54 96q-5 35 2.5 66t31.5 63t42 50t56 54q24 21 44 41l348 348 q52 52 82.5 79.5t84 54t107.5 26.5q25 0 48 -4q95 -17 154 -94.5t51 -175.5q-7 -101 -98 -192l-252 -249l-253 -256z" />
221 | <glyph unicode="&#x1f4f7;" d="M1200 200v600q0 41 -29.5 70.5t-70.5 29.5h-150q-4 8 -11.5 21.5t-33 48t-53 61t-69 48t-83.5 21.5h-200q-41 0 -82 -20.5t-70 -50t-52 -59t-34 -50.5l-12 -20h-150q-41 0 -70.5 -29.5t-29.5 -70.5v-600q0 -41 29.5 -70.5t70.5 -29.5h1000q41 0 70.5 29.5t29.5 70.5z M1000 700h-100v100h100v-100zM844 500q0 -100 -72 -172t-172 -72t-172 72t-72 172t72 172t172 72t172 -72t72 -172zM706 500q0 44 -31 75t-75 31t-75 -31t-31 -75t31 -75t75 -31t75 31t31 75z" />
222 | <glyph unicode="&#x1f512;" d="M900 800h100q41 0 70.5 -29.5t29.5 -70.5v-600q0 -41 -29.5 -70.5t-70.5 -29.5h-900q-41 0 -70.5 29.5t-29.5 70.5v600q0 41 29.5 70.5t70.5 29.5h100v200q0 82 59 141t141 59h300q82 0 141 -59t59 -141v-200zM400 800h300v150q0 21 -14.5 35.5t-35.5 14.5h-200 q-21 0 -35.5 -14.5t-14.5 -35.5v-150z" />
223 | <glyph unicode="&#x1f514;" d="M1062 400h17q20 0 33.5 -14.5t13.5 -35.5q0 -20 -13 -40t-31 -27q-22 -9 -63 -23t-167.5 -37t-251.5 -23t-245.5 20.5t-178.5 41.5l-58 20q-18 7 -31 27.5t-13 40.5q0 21 13.5 35.5t33.5 14.5h17l118 173l63 327q15 77 76 140t144 83l-18 32q-6 19 3 32t29 13h94 q20 0 29 -10.5t3 -29.5l-18 -37q83 -19 144 -82.5t76 -140.5l63 -327zM600 104q-54 0 -103 6q12 -49 40 -79.5t63 -30.5t63 30.5t39 79.5q-48 -6 -102 -6z" />
224 | <glyph unicode="&#x1f516;" d="M200 0l450 444l450 -443v1150q0 20 -14.5 35t-35.5 15h-800q-21 0 -35.5 -15t-14.5 -35v-1151z" />
225 | <glyph unicode="&#x1f525;" d="M400 755q2 -12 8 -41.5t8 -43t6 -39.5t3.5 -39.5t-1 -33.5t-6 -31.5t-13.5 -24t-21 -20.5t-31 -12q-38 -10 -67 13t-40.5 61.5t-15 81.5t10.5 75q-52 -46 -83.5 -101t-39 -107t-7.5 -85t5 -63q9 -56 44 -119.5t105 -108.5q31 -21 64 -16t62 23.5t57 49.5t48 61.5t35 60.5 q32 66 39 184.5t-13 157.5q79 -80 122 -164t26 -184q-5 -33 -20.5 -69.5t-37.5 -80.5q-10 -19 -14.5 -29t-12 -26t-9 -23.5t-3 -19t2.5 -15.5t11 -9.5t19.5 -5t30.5 2.5t42 8q57 20 91 34t87.5 44.5t87 64t65.5 88.5t47 122q38 172 -44.5 341.5t-246.5 278.5q22 -44 43 -129 q39 -159 -32 -154q-15 2 -33 9q-79 33 -120.5 100t-44 175.5t48.5 257.5q-13 -8 -34 -23.5t-72.5 -66.5t-88.5 -105.5t-60 -138t-8 -166.5z" />
226 | <glyph unicode="&#x1f527;" d="M948 778l251 126q13 -175 -151 -267q-123 -70 -253 -23l-596 -596q-15 -16 -36.5 -16t-36.5 16l-111 110q-15 15 -15 36.5t15 37.5l600 599q-33 101 6 201.5t135 154.5q164 92 306 -9l-259 -138z" />
227 | </font>
228 | </defs></svg> 


--------------------------------------------------------------------------------
/src/service_provider/static/bootstrap/fonts/glyphicons-halflings-regular.ttf:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/its-dirg/non-web-oidc/8f5406f7a3148fd6a057a0ee4fb0ca35892e0c9c/src/service_provider/static/bootstrap/fonts/glyphicons-halflings-regular.ttf


--------------------------------------------------------------------------------
/src/service_provider/static/bootstrap/fonts/glyphicons-halflings-regular.woff:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/its-dirg/non-web-oidc/8f5406f7a3148fd6a057a0ee4fb0ca35892e0c9c/src/service_provider/static/bootstrap/fonts/glyphicons-halflings-regular.woff


--------------------------------------------------------------------------------
/src/service_provider/static/bootstrap/js/bootstrap.min.js:
--------------------------------------------------------------------------------
  1 | /**
  2 |  * bootstrap.js v3.0.0 by @fat and @mdo
  3 |  * Copyright 2013 Twitter Inc.
  4 |  * http://www.apache.org/licenses/LICENSE-2.0
  5 |  */
  6 | if (!jQuery)throw new Error("Bootstrap requires jQuery");
  7 | +function (a) {
  8 |     "use strict";
  9 |     function b() {
 10 |         var a = document.createElement("bootstrap"), b = {WebkitTransition: "webkitTransitionEnd", MozTransition: "transitionend", OTransition: "oTransitionEnd otransitionend", transition: "transitionend"};
 11 |         for (var c in b)if (void 0 !== a.style[c])return{end: b[c]}
 12 |     }
 13 | 
 14 |     a.fn.emulateTransitionEnd = function (b) {
 15 |         var c = !1, d = this;
 16 |         a(this).one(a.support.transition.end, function () {
 17 |             c = !0
 18 |         });
 19 |         var e = function () {
 20 |             c || a(d).trigger(a.support.transition.end)
 21 |         };
 22 |         return setTimeout(e, b), this
 23 |     }, a(function () {
 24 |         a.support.transition = b()
 25 |     })
 26 | }(window.jQuery), +function (a) {
 27 |     "use strict";
 28 |     var b = '[data-dismiss="alert"]', c = function (c) {
 29 |         a(c).on("click", b, this.close)
 30 |     };
 31 |     c.prototype.close = function (b) {
 32 |         function c() {
 33 |             f.trigger("closed.bs.alert").remove()
 34 |         }
 35 | 
 36 |         var d = a(this), e = d.attr("data-target");
 37 |         e || (e = d.attr("href"), e = e && e.replace(/.*(?=#[^\s]*$)/, ""));
 38 |         var f = a(e);
 39 |         b && b.preventDefault(), f.length || (f = d.hasClass("alert") ? d : d.parent()), f.trigger(b = a.Event("close.bs.alert")), b.isDefaultPrevented() || (f.removeClass("in"), a.support.transition && f.hasClass("fade") ? f.one(a.support.transition.end, c).emulateTransitionEnd(150) : c())
 40 |     };
 41 |     var d = a.fn.alert;
 42 |     a.fn.alert = function (b) {
 43 |         return this.each(function () {
 44 |             var d = a(this), e = d.data("bs.alert");
 45 |             e || d.data("bs.alert", e = new c(this)), "string" == typeof b && e[b].call(d)
 46 |         })
 47 |     }, a.fn.alert.Constructor = c, a.fn.alert.noConflict = function () {
 48 |         return a.fn.alert = d, this
 49 |     }, a(document).on("click.bs.alert.data-api", b, c.prototype.close)
 50 | }(window.jQuery), +function (a) {
 51 |     "use strict";
 52 |     var b = function (c, d) {
 53 |         this.$element = a(c), this.options = a.extend({}, b.DEFAULTS, d)
 54 |     };
 55 |     b.DEFAULTS = {loadingText: "loading..."}, b.prototype.setState = function (a) {
 56 |         var b = "disabled", c = this.$element, d = c.is("input") ? "val" : "html", e = c.data();
 57 |         a += "Text", e.resetText || c.data("resetText", c[d]()), c[d](e[a] || this.options[a]), setTimeout(function () {
 58 |             "loadingText" == a ? c.addClass(b).attr(b, b) : c.removeClass(b).removeAttr(b)
 59 |         }, 0)
 60 |     }, b.prototype.toggle = function () {
 61 |         var a = this.$element.closest('[data-toggle="buttons"]');
 62 |         if (a.length) {
 63 |             var b = this.$element.find("input").prop("checked", !this.$element.hasClass("active")).trigger("change");
 64 |             "radio" === b.prop("type") && a.find(".active").removeClass("active")
 65 |         }
 66 |         this.$element.toggleClass("active")
 67 |     };
 68 |     var c = a.fn.button;
 69 |     a.fn.button = function (c) {
 70 |         return this.each(function () {
 71 |             var d = a(this), e = d.data("bs.button"), f = "object" == typeof c && c;
 72 |             e || d.data("bs.button", e = new b(this, f)), "toggle" == c ? e.toggle() : c && e.setState(c)
 73 |         })
 74 |     }, a.fn.button.Constructor = b, a.fn.button.noConflict = function () {
 75 |         return a.fn.button = c, this
 76 |     }, a(document).on("click.bs.button.data-api", "[data-toggle^=button]", function (b) {
 77 |         var c = a(b.target);
 78 |         c.hasClass("btn") || (c = c.closest(".btn")), c.button("toggle"), b.preventDefault()
 79 |     })
 80 | }(window.jQuery), +function (a) {
 81 |     "use strict";
 82 |     var b = function (b, c) {
 83 |         this.$element = a(b), this.$indicators = this.$element.find(".carousel-indicators"), this.options = c, this.paused = this.sliding = this.interval = this.$active = this.$items = null, "hover" == this.options.pause && this.$element.on("mouseenter", a.proxy(this.pause, this)).on("mouseleave", a.proxy(this.cycle, this))
 84 |     };
 85 |     b.DEFAULTS = {interval: 5e3, pause: "hover", wrap: !0}, b.prototype.cycle = function (b) {
 86 |         return b || (this.paused = !1), this.interval && clearInterval(this.interval), this.options.interval && !this.paused && (this.interval = setInterval(a.proxy(this.next, this), this.options.interval)), this
 87 |     }, b.prototype.getActiveIndex = function () {
 88 |         return this.$active = this.$element.find(".item.active"), this.$items = this.$active.parent().children(), this.$items.index(this.$active)
 89 |     }, b.prototype.to = function (b) {
 90 |         var c = this, d = this.getActiveIndex();
 91 |         return b > this.$items.length - 1 || 0 > b ? void 0 : this.sliding ? this.$element.one("slid", function () {
 92 |             c.to(b)
 93 |         }) : d == b ? this.pause().cycle() : this.slide(b > d ? "next" : "prev", a(this.$items[b]))
 94 |     }, b.prototype.pause = function (b) {
 95 |         return b || (this.paused = !0), this.$element.find(".next, .prev").length && a.support.transition.end && (this.$element.trigger(a.support.transition.end), this.cycle(!0)), this.interval = clearInterval(this.interval), this
 96 |     }, b.prototype.next = function () {
 97 |         return this.sliding ? void 0 : this.slide("next")
 98 |     }, b.prototype.prev = function () {
 99 |         return this.sliding ? void 0 : this.slide("prev")
100 |     }, b.prototype.slide = function (b, c) {
101 |         var d = this.$element.find(".item.active"), e = c || d[b](), f = this.interval, g = "next" == b ? "left" : "right", h = "next" == b ? "first" : "last", i = this;
102 |         if (!e.length) {
103 |             if (!this.options.wrap)return;
104 |             e = this.$element.find(".item")[h]()
105 |         }
106 |         this.sliding = !0, f && this.pause();
107 |         var j = a.Event("slide.bs.carousel", {relatedTarget: e[0], direction: g});
108 |         if (!e.hasClass("active")) {
109 |             if (this.$indicators.length && (this.$indicators.find(".active").removeClass("active"), this.$element.one("slid", function () {
110 |                 var b = a(i.$indicators.children()[i.getActiveIndex()]);
111 |                 b && b.addClass("active")
112 |             })), a.support.transition && this.$element.hasClass("slide")) {
113 |                 if (this.$element.trigger(j), j.isDefaultPrevented())return;
114 |                 e.addClass(b), e[0].offsetWidth, d.addClass(g), e.addClass(g), d.one(a.support.transition.end, function () {
115 |                     e.removeClass([b, g].join(" ")).addClass("active"), d.removeClass(["active", g].join(" ")), i.sliding = !1, setTimeout(function () {
116 |                         i.$element.trigger("slid")
117 |                     }, 0)
118 |                 }).emulateTransitionEnd(600)
119 |             } else {
120 |                 if (this.$element.trigger(j), j.isDefaultPrevented())return;
121 |                 d.removeClass("active"), e.addClass("active"), this.sliding = !1, this.$element.trigger("slid")
122 |             }
123 |             return f && this.cycle(), this
124 |         }
125 |     };
126 |     var c = a.fn.carousel;
127 |     a.fn.carousel = function (c) {
128 |         return this.each(function () {
129 |             var d = a(this), e = d.data("bs.carousel"), f = a.extend({}, b.DEFAULTS, d.data(), "object" == typeof c && c), g = "string" == typeof c ? c : f.slide;
130 |             e || d.data("bs.carousel", e = new b(this, f)), "number" == typeof c ? e.to(c) : g ? e[g]() : f.interval && e.pause().cycle()
131 |         })
132 |     }, a.fn.carousel.Constructor = b, a.fn.carousel.noConflict = function () {
133 |         return a.fn.carousel = c, this
134 |     }, a(document).on("click.bs.carousel.data-api", "[data-slide], [data-slide-to]", function (b) {
135 |         var c, d = a(this), e = a(d.attr("data-target") || (c = d.attr("href")) && c.replace(/.*(?=#[^\s]+$)/, "")), f = a.extend({}, e.data(), d.data()), g = d.attr("data-slide-to");
136 |         g && (f.interval = !1), e.carousel(f), (g = d.attr("data-slide-to")) && e.data("bs.carousel").to(g), b.preventDefault()
137 |     }), a(window).on("load", function () {
138 |         a('[data-ride="carousel"]').each(function () {
139 |             var b = a(this);
140 |             b.carousel(b.data())
141 |         })
142 |     })
143 | }(window.jQuery), +function (a) {
144 |     "use strict";
145 |     var b = function (c, d) {
146 |         this.$element = a(c), this.options = a.extend({}, b.DEFAULTS, d), this.transitioning = null, this.options.parent && (this.$parent = a(this.options.parent)), this.options.toggle && this.toggle()
147 |     };
148 |     b.DEFAULTS = {toggle: !0}, b.prototype.dimension = function () {
149 |         var a = this.$element.hasClass("width");
150 |         return a ? "width" : "height"
151 |     }, b.prototype.show = function () {
152 |         if (!this.transitioning && !this.$element.hasClass("in")) {
153 |             var b = a.Event("show.bs.collapse");
154 |             if (this.$element.trigger(b), !b.isDefaultPrevented()) {
155 |                 var c = this.$parent && this.$parent.find("> .panel > .in");
156 |                 if (c && c.length) {
157 |                     var d = c.data("bs.collapse");
158 |                     if (d && d.transitioning)return;
159 |                     c.collapse("hide"), d || c.data("bs.collapse", null)
160 |                 }
161 |                 var e = this.dimension();
162 |                 this.$element.removeClass("collapse").addClass("collapsing")[e](0), this.transitioning = 1;
163 |                 var f = function () {
164 |                     this.$element.removeClass("collapsing").addClass("in")[e]("auto"), this.transitioning = 0, this.$element.trigger("shown.bs.collapse")
165 |                 };
166 |                 if (!a.support.transition)return f.call(this);
167 |                 var g = a.camelCase(["scroll", e].join("-"));
168 |                 this.$element.one(a.support.transition.end, a.proxy(f, this)).emulateTransitionEnd(350)[e](this.$element[0][g])
169 |             }
170 |         }
171 |     }, b.prototype.hide = function () {
172 |         if (!this.transitioning && this.$element.hasClass("in")) {
173 |             var b = a.Event("hide.bs.collapse");
174 |             if (this.$element.trigger(b), !b.isDefaultPrevented()) {
175 |                 var c = this.dimension();
176 |                 this.$element[c](this.$element[c]())[0].offsetHeight, this.$element.addClass("collapsing").removeClass("collapse").removeClass("in"), this.transitioning = 1;
177 |                 var d = function () {
178 |                     this.transitioning = 0, this.$element.trigger("hidden.bs.collapse").removeClass("collapsing").addClass("collapse")
179 |                 };
180 |                 return a.support.transition ? (this.$element[c](0).one(a.support.transition.end, a.proxy(d, this)).emulateTransitionEnd(350), void 0) : d.call(this)
181 |             }
182 |         }
183 |     }, b.prototype.toggle = function () {
184 |         this[this.$element.hasClass("in") ? "hide" : "show"]()
185 |     };
186 |     var c = a.fn.collapse;
187 |     a.fn.collapse = function (c) {
188 |         return this.each(function () {
189 |             var d = a(this), e = d.data("bs.collapse"), f = a.extend({}, b.DEFAULTS, d.data(), "object" == typeof c && c);
190 |             e || d.data("bs.collapse", e = new b(this, f)), "string" == typeof c && e[c]()
191 |         })
192 |     }, a.fn.collapse.Constructor = b, a.fn.collapse.noConflict = function () {
193 |         return a.fn.collapse = c, this
194 |     }, a(document).on("click.bs.collapse.data-api", "[data-toggle=collapse]", function (b) {
195 |         var c, d = a(this), e = d.attr("data-target") || b.preventDefault() || (c = d.attr("href")) && c.replace(/.*(?=#[^\s]+$)/, ""), f = a(e), g = f.data("bs.collapse"), h = g ? "toggle" : d.data(), i = d.attr("data-parent"), j = i && a(i);
196 |         g && g.transitioning || (j && j.find('[data-toggle=collapse][data-parent="' + i + '"]').not(d).addClass("collapsed"), d[f.hasClass("in") ? "addClass" : "removeClass"]("collapsed")), f.collapse(h)
197 |     })
198 | }(window.jQuery), +function (a) {
199 |     "use strict";
200 |     function b() {
201 |         a(d).remove(), a(e).each(function (b) {
202 |             var d = c(a(this));
203 |             d.hasClass("open") && (d.trigger(b = a.Event("hide.bs.dropdown")), b.isDefaultPrevented() || d.removeClass("open").trigger("hidden.bs.dropdown"))
204 |         })
205 |     }
206 | 
207 |     function c(b) {
208 |         var c = b.attr("data-target");
209 |         c || (c = b.attr("href"), c = c && /#/.test(c) && c.replace(/.*(?=#[^\s]*$)/, ""));
210 |         var d = c && a(c);
211 |         return d && d.length ? d : b.parent()
212 |     }
213 | 
214 |     var d = ".dropdown-backdrop", e = "[data-toggle=dropdown]", f = function (b) {
215 |         a(b).on("click.bs.dropdown", this.toggle)
216 |     };
217 |     f.prototype.toggle = function (d) {
218 |         var e = a(this);
219 |         if (!e.is(".disabled, :disabled")) {
220 |             var f = c(e), g = f.hasClass("open");
221 |             if (b(), !g) {
222 |                 if ("ontouchstart"in document.documentElement && !f.closest(".navbar-nav").length && a('<div class="dropdown-backdrop"/>').insertAfter(a(this)).on("click", b), f.trigger(d = a.Event("show.bs.dropdown")), d.isDefaultPrevented())return;
223 |                 f.toggleClass("open").trigger("shown.bs.dropdown"), e.focus()
224 |             }
225 |             return!1
226 |         }
227 |     }, f.prototype.keydown = function (b) {
228 |         if (/(38|40|27)/.test(b.keyCode)) {
229 |             var d = a(this);
230 |             if (b.preventDefault(), b.stopPropagation(), !d.is(".disabled, :disabled")) {
231 |                 var f = c(d), g = f.hasClass("open");
232 |                 if (!g || g && 27 == b.keyCode)return 27 == b.which && f.find(e).focus(), d.click();
233 |                 var h = a("[role=menu] li:not(.divider):visible a", f);
234 |                 if (h.length) {
235 |                     var i = h.index(h.filter(":focus"));
236 |                     38 == b.keyCode && i > 0 && i--, 40 == b.keyCode && i < h.length - 1 && i++, ~i || (i = 0), h.eq(i).focus()
237 |                 }
238 |             }
239 |         }
240 |     };
241 |     var g = a.fn.dropdown;
242 |     a.fn.dropdown = function (b) {
243 |         return this.each(function () {
244 |             var c = a(this), d = c.data("dropdown");
245 |             d || c.data("dropdown", d = new f(this)), "string" == typeof b && d[b].call(c)
246 |         })
247 |     }, a.fn.dropdown.Constructor = f, a.fn.dropdown.noConflict = function () {
248 |         return a.fn.dropdown = g, this
249 |     }, a(document).on("click.bs.dropdown.data-api", b).on("click.bs.dropdown.data-api", ".dropdown form", function (a) {
250 |         a.stopPropagation()
251 |     }).on("click.bs.dropdown.data-api", e, f.prototype.toggle).on("keydown.bs.dropdown.data-api", e + ", [role=menu]", f.prototype.keydown)
252 | }(window.jQuery), +function (a) {
253 |     "use strict";
254 |     var b = function (b, c) {
255 |         this.options = c, this.$element = a(b), this.$backdrop = this.isShown = null, this.options.remote && this.$element.load(this.options.remote)
256 |     };
257 |     b.DEFAULTS = {backdrop: !0, keyboard: !0, show: !0}, b.prototype.toggle = function (a) {
258 |         return this[this.isShown ? "hide" : "show"](a)
259 |     }, b.prototype.show = function (b) {
260 |         var c = this, d = a.Event("show.bs.modal", {relatedTarget: b});
261 |         this.$element.trigger(d), this.isShown || d.isDefaultPrevented() || (this.isShown = !0, this.escape(), this.$element.on("click.dismiss.modal", '[data-dismiss="modal"]', a.proxy(this.hide, this)), this.backdrop(function () {
262 |             var d = a.support.transition && c.$element.hasClass("fade");
263 |             c.$element.parent().length || c.$element.appendTo(document.body), c.$element.show(), d && c.$element[0].offsetWidth, c.$element.addClass("in").attr("aria-hidden", !1), c.enforceFocus();
264 |             var e = a.Event("shown.bs.modal", {relatedTarget: b});
265 |             d ? c.$element.find(".modal-dialog").one(a.support.transition.end, function () {
266 |                 c.$element.focus().trigger(e)
267 |             }).emulateTransitionEnd(300) : c.$element.focus().trigger(e)
268 |         }))
269 |     }, b.prototype.hide = function (b) {
270 |         b && b.preventDefault(), b = a.Event("hide.bs.modal"), this.$element.trigger(b), this.isShown && !b.isDefaultPrevented() && (this.isShown = !1, this.escape(), a(document).off("focusin.bs.modal"), this.$element.removeClass("in").attr("aria-hidden", !0).off("click.dismiss.modal"), a.support.transition && this.$element.hasClass("fade") ? this.$element.one(a.support.transition.end, a.proxy(this.hideModal, this)).emulateTransitionEnd(300) : this.hideModal())
271 |     }, b.prototype.enforceFocus = function () {
272 |         a(document).off("focusin.bs.modal").on("focusin.bs.modal", a.proxy(function (a) {
273 |             this.$element[0] === a.target || this.$element.has(a.target).length || this.$element.focus()
274 |         }, this))
275 |     }, b.prototype.escape = function () {
276 |         this.isShown && this.options.keyboard ? this.$element.on("keyup.dismiss.bs.modal", a.proxy(function (a) {
277 |             27 == a.which && this.hide()
278 |         }, this)) : this.isShown || this.$element.off("keyup.dismiss.bs.modal")
279 |     }, b.prototype.hideModal = function () {
280 |         var a = this;
281 |         this.$element.hide(), this.backdrop(function () {
282 |             a.removeBackdrop(), a.$element.trigger("hidden.bs.modal")
283 |         })
284 |     }, b.prototype.removeBackdrop = function () {
285 |         this.$backdrop && this.$backdrop.remove(), this.$backdrop = null
286 |     }, b.prototype.backdrop = function (b) {
287 |         var c = this.$element.hasClass("fade") ? "fade" : "";
288 |         if (this.isShown && this.options.backdrop) {
289 |             var d = a.support.transition && c;
290 |             if (this.$backdrop = a('<div class="modal-backdrop ' + c + '" />').appendTo(document.body), this.$element.on("click.dismiss.modal", a.proxy(function (a) {
291 |                 a.target === a.currentTarget && ("static" == this.options.backdrop ? this.$element[0].focus.call(this.$element[0]) : this.hide.call(this))
292 |             }, this)), d && this.$backdrop[0].offsetWidth, this.$backdrop.addClass("in"), !b)return;
293 |             d ? this.$backdrop.one(a.support.transition.end, b).emulateTransitionEnd(150) : b()
294 |         } else!this.isShown && this.$backdrop ? (this.$backdrop.removeClass("in"), a.support.transition && this.$element.hasClass("fade") ? this.$backdrop.one(a.support.transition.end, b).emulateTransitionEnd(150) : b()) : b && b()
295 |     };
296 |     var c = a.fn.modal;
297 |     a.fn.modal = function (c, d) {
298 |         return this.each(function () {
299 |             var e = a(this), f = e.data("bs.modal"), g = a.extend({}, b.DEFAULTS, e.data(), "object" == typeof c && c);
300 |             f || e.data("bs.modal", f = new b(this, g)), "string" == typeof c ? f[c](d) : g.show && f.show(d)
301 |         })
302 |     }, a.fn.modal.Constructor = b, a.fn.modal.noConflict = function () {
303 |         return a.fn.modal = c, this
304 |     }, a(document).on("click.bs.modal.data-api", '[data-toggle="modal"]', function (b) {
305 |         var c = a(this), d = c.attr("href"), e = a(c.attr("data-target") || d && d.replace(/.*(?=#[^\s]+$)/, "")), f = e.data("modal") ? "toggle" : a.extend({remote: !/#/.test(d) && d}, e.data(), c.data());
306 |         b.preventDefault(), e.modal(f, this).one("hide", function () {
307 |             c.is(":visible") && c.focus()
308 |         })
309 |     }), a(document).on("show.bs.modal", ".modal", function () {
310 |         a(document.body).addClass("modal-open")
311 |     }).on("hidden.bs.modal", ".modal", function () {
312 |         a(document.body).removeClass("modal-open")
313 |     })
314 | }(window.jQuery), +function (a) {
315 |     "use strict";
316 |     var b = function (a, b) {
317 |         this.type = this.options = this.enabled = this.timeout = this.hoverState = this.$element = null, this.init("tooltip", a, b)
318 |     };
319 |     b.DEFAULTS = {animation: !0, placement: "top", selector: !1, template: '<div class="tooltip"><div class="tooltip-arrow"></div><div class="tooltip-inner"></div></div>', trigger: "hover focus", title: "", delay: 0, html: !1, container: !1}, b.prototype.init = function (b, c, d) {
320 |         this.enabled = !0, this.type = b, this.$element = a(c), this.options = this.getOptions(d);
321 |         for (var e = this.options.trigger.split(" "), f = e.length; f--;) {
322 |             var g = e[f];
323 |             if ("click" == g)this.$element.on("click." + this.type, this.options.selector, a.proxy(this.toggle, this)); else if ("manual" != g) {
324 |                 var h = "hover" == g ? "mouseenter" : "focus", i = "hover" == g ? "mouseleave" : "blur";
325 |                 this.$element.on(h + "." + this.type, this.options.selector, a.proxy(this.enter, this)), this.$element.on(i + "." + this.type, this.options.selector, a.proxy(this.leave, this))
326 |             }
327 |         }
328 |         this.options.selector ? this._options = a.extend({}, this.options, {trigger: "manual", selector: ""}) : this.fixTitle()
329 |     }, b.prototype.getDefaults = function () {
330 |         return b.DEFAULTS
331 |     }, b.prototype.getOptions = function (b) {
332 |         return b = a.extend({}, this.getDefaults(), this.$element.data(), b), b.delay && "number" == typeof b.delay && (b.delay = {show: b.delay, hide: b.delay}), b
333 |     }, b.prototype.getDelegateOptions = function () {
334 |         var b = {}, c = this.getDefaults();
335 |         return this._options && a.each(this._options, function (a, d) {
336 |             c[a] != d && (b[a] = d)
337 |         }), b
338 |     }, b.prototype.enter = function (b) {
339 |         var c = b instanceof this.constructor ? b : a(b.currentTarget)[this.type](this.getDelegateOptions()).data("bs." + this.type);
340 |         return clearTimeout(c.timeout), c.hoverState = "in", c.options.delay && c.options.delay.show ? (c.timeout = setTimeout(function () {
341 |             "in" == c.hoverState && c.show()
342 |         }, c.options.delay.show), void 0) : c.show()
343 |     }, b.prototype.leave = function (b) {
344 |         var c = b instanceof this.constructor ? b : a(b.currentTarget)[this.type](this.getDelegateOptions()).data("bs." + this.type);
345 |         return clearTimeout(c.timeout), c.hoverState = "out", c.options.delay && c.options.delay.hide ? (c.timeout = setTimeout(function () {
346 |             "out" == c.hoverState && c.hide()
347 |         }, c.options.delay.hide), void 0) : c.hide()
348 |     }, b.prototype.show = function () {
349 |         var b = a.Event("show.bs." + this.type);
350 |         if (this.hasContent() && this.enabled) {
351 |             if (this.$element.trigger(b), b.isDefaultPrevented())return;
352 |             var c = this.tip();
353 |             this.setContent(), this.options.animation && c.addClass("fade");
354 |             var d = "function" == typeof this.options.placement ? this.options.placement.call(this, c[0], this.$element[0]) : this.options.placement, e = /\s?auto?\s?/i, f = e.test(d);
355 |             f && (d = d.replace(e, "") || "top"), c.detach().css({top: 0, left: 0, display: "block"}).addClass(d), this.options.container ? c.appendTo(this.options.container) : c.insertAfter(this.$element);
356 |             var g = this.getPosition(), h = c[0].offsetWidth, i = c[0].offsetHeight;
357 |             if (f) {
358 |                 var j = this.$element.parent(), k = d, l = document.documentElement.scrollTop || document.body.scrollTop, m = "body" == this.options.container ? window.innerWidth : j.outerWidth(), n = "body" == this.options.container ? window.innerHeight : j.outerHeight(), o = "body" == this.options.container ? 0 : j.offset().left;
359 |                 d = "bottom" == d && g.top + g.height + i - l > n ? "top" : "top" == d && g.top - l - i < 0 ? "bottom" : "right" == d && g.right + h > m ? "left" : "left" == d && g.left - h < o ? "right" : d, c.removeClass(k).addClass(d)
360 |             }
361 |             var p = this.getCalculatedOffset(d, g, h, i);
362 |             this.applyPlacement(p, d), this.$element.trigger("shown.bs." + this.type)
363 |         }
364 |     }, b.prototype.applyPlacement = function (a, b) {
365 |         var c, d = this.tip(), e = d[0].offsetWidth, f = d[0].offsetHeight, g = parseInt(d.css("margin-top"), 10), h = parseInt(d.css("margin-left"), 10);
366 |         isNaN(g) && (g = 0), isNaN(h) && (h = 0), a.top = a.top + g, a.left = a.left + h, d.offset(a).addClass("in");
367 |         var i = d[0].offsetWidth, j = d[0].offsetHeight;
368 |         if ("top" == b && j != f && (c = !0, a.top = a.top + f - j), /bottom|top/.test(b)) {
369 |             var k = 0;
370 |             a.left < 0 && (k = -2 * a.left, a.left = 0, d.offset(a), i = d[0].offsetWidth, j = d[0].offsetHeight), this.replaceArrow(k - e + i, i, "left")
371 |         } else this.replaceArrow(j - f, j, "top");
372 |         c && d.offset(a)
373 |     }, b.prototype.replaceArrow = function (a, b, c) {
374 |         this.arrow().css(c, a ? 50 * (1 - a / b) + "%" : "")
375 |     }, b.prototype.setContent = function () {
376 |         var a = this.tip(), b = this.getTitle();
377 |         a.find(".tooltip-inner")[this.options.html ? "html" : "text"](b), a.removeClass("fade in top bottom left right")
378 |     }, b.prototype.hide = function () {
379 |         function b() {
380 |             "in" != c.hoverState && d.detach()
381 |         }
382 | 
383 |         var c = this, d = this.tip(), e = a.Event("hide.bs." + this.type);
384 |         return this.$element.trigger(e), e.isDefaultPrevented() ? void 0 : (d.removeClass("in"), a.support.transition && this.$tip.hasClass("fade") ? d.one(a.support.transition.end, b).emulateTransitionEnd(150) : b(), this.$element.trigger("hidden.bs." + this.type), this)
385 |     }, b.prototype.fixTitle = function () {
386 |         var a = this.$element;
387 |         (a.attr("title") || "string" != typeof a.attr("data-original-title")) && a.attr("data-original-title", a.attr("title") || "").attr("title", "")
388 |     }, b.prototype.hasContent = function () {
389 |         return this.getTitle()
390 |     }, b.prototype.getPosition = function () {
391 |         var b = this.$element[0];
392 |         return a.extend({}, "function" == typeof b.getBoundingClientRect ? b.getBoundingClientRect() : {width: b.offsetWidth, height: b.offsetHeight}, this.$element.offset())
393 |     }, b.prototype.getCalculatedOffset = function (a, b, c, d) {
394 |         return"bottom" == a ? {top: b.top + b.height, left: b.left + b.width / 2 - c / 2} : "top" == a ? {top: b.top - d, left: b.left + b.width / 2 - c / 2} : "left" == a ? {top: b.top + b.height / 2 - d / 2, left: b.left - c} : {top: b.top + b.height / 2 - d / 2, left: b.left + b.width}
395 |     }, b.prototype.getTitle = function () {
396 |         var a, b = this.$element, c = this.options;
397 |         return a = b.attr("data-original-title") || ("function" == typeof c.title ? c.title.call(b[0]) : c.title)
398 |     }, b.prototype.tip = function () {
399 |         return this.$tip = this.$tip || a(this.options.template)
400 |     }, b.prototype.arrow = function () {
401 |         return this.$arrow = this.$arrow || this.tip().find(".tooltip-arrow")
402 |     }, b.prototype.validate = function () {
403 |         this.$element[0].parentNode || (this.hide(), this.$element = null, this.options = null)
404 |     }, b.prototype.enable = function () {
405 |         this.enabled = !0
406 |     }, b.prototype.disable = function () {
407 |         this.enabled = !1
408 |     }, b.prototype.toggleEnabled = function () {
409 |         this.enabled = !this.enabled
410 |     }, b.prototype.toggle = function (b) {
411 |         var c = b ? a(b.currentTarget)[this.type](this.getDelegateOptions()).data("bs." + this.type) : this;
412 |         c.tip().hasClass("in") ? c.leave(c) : c.enter(c)
413 |     }, b.prototype.destroy = function () {
414 |         this.hide().$element.off("." + this.type).removeData("bs." + this.type)
415 |     };
416 |     var c = a.fn.tooltip;
417 |     a.fn.tooltip = function (c) {
418 |         return this.each(function () {
419 |             var d = a(this), e = d.data("bs.tooltip"), f = "object" == typeof c && c;
420 |             e || d.data("bs.tooltip", e = new b(this, f)), "string" == typeof c && e[c]()
421 |         })
422 |     }, a.fn.tooltip.Constructor = b, a.fn.tooltip.noConflict = function () {
423 |         return a.fn.tooltip = c, this
424 |     }
425 | }(window.jQuery), +function (a) {
426 |     "use strict";
427 |     var b = function (a, b) {
428 |         this.init("popover", a, b)
429 |     };
430 |     if (!a.fn.tooltip)throw new Error("Popover requires tooltip.js");
431 |     b.DEFAULTS = a.extend({}, a.fn.tooltip.Constructor.DEFAULTS, {placement: "right", trigger: "click", content: "", template: '<div class="popover"><div class="arrow"></div><h3 class="popover-title"></h3><div class="popover-content"></div></div>'}), b.prototype = a.extend({}, a.fn.tooltip.Constructor.prototype), b.prototype.constructor = b, b.prototype.getDefaults = function () {
432 |         return b.DEFAULTS
433 |     }, b.prototype.setContent = function () {
434 |         var a = this.tip(), b = this.getTitle(), c = this.getContent();
435 |         a.find(".popover-title")[this.options.html ? "html" : "text"](b), a.find(".popover-content")[this.options.html ? "html" : "text"](c), a.removeClass("fade top bottom left right in"), a.find(".popover-title").html() || a.find(".popover-title").hide()
436 |     }, b.prototype.hasContent = function () {
437 |         return this.getTitle() || this.getContent()
438 |     }, b.prototype.getContent = function () {
439 |         var a = this.$element, b = this.options;
440 |         return a.attr("data-content") || ("function" == typeof b.content ? b.content.call(a[0]) : b.content)
441 |     }, b.prototype.arrow = function () {
442 |         return this.$arrow = this.$arrow || this.tip().find(".arrow")
443 |     }, b.prototype.tip = function () {
444 |         return this.$tip || (this.$tip = a(this.options.template)), this.$tip
445 |     };
446 |     var c = a.fn.popover;
447 |     a.fn.popover = function (c) {
448 |         return this.each(function () {
449 |             var d = a(this), e = d.data("bs.popover"), f = "object" == typeof c && c;
450 |             e || d.data("bs.popover", e = new b(this, f)), "string" == typeof c && e[c]()
451 |         })
452 |     }, a.fn.popover.Constructor = b, a.fn.popover.noConflict = function () {
453 |         return a.fn.popover = c, this
454 |     }
455 | }(window.jQuery), +function (a) {
456 |     "use strict";
457 |     function b(c, d) {
458 |         var e, f = a.proxy(this.process, this);
459 |         this.$element = a(c).is("body") ? a(window) : a(c), this.$body = a("body"), this.$scrollElement = this.$element.on("scroll.bs.scroll-spy.data-api", f), this.options = a.extend({}, b.DEFAULTS, d), this.selector = (this.options.target || (e = a(c).attr("href")) && e.replace(/.*(?=#[^\s]+$)/, "") || "") + " .nav li > a", this.offsets = a([]), this.targets = a([]), this.activeTarget = null, this.refresh(), this.process()
460 |     }
461 | 
462 |     b.DEFAULTS = {offset: 10}, b.prototype.refresh = function () {
463 |         var b = this.$element[0] == window ? "offset" : "position";
464 |         this.offsets = a([]), this.targets = a([]);
465 |         var c = this;
466 |         this.$body.find(this.selector).map(function () {
467 |             var d = a(this), e = d.data("target") || d.attr("href"), f = /^#\w/.test(e) && a(e);
468 |             return f && f.length && [
469 |                 [f[b]().top + (!a.isWindow(c.$scrollElement.get(0)) && c.$scrollElement.scrollTop()), e]
470 |             ] || null
471 |         }).sort(function (a, b) {
472 |             return a[0] - b[0]
473 |         }).each(function () {
474 |             c.offsets.push(this[0]), c.targets.push(this[1])
475 |         })
476 |     }, b.prototype.process = function () {
477 |         var a, b = this.$scrollElement.scrollTop() + this.options.offset, c = this.$scrollElement[0].scrollHeight || this.$body[0].scrollHeight, d = c - this.$scrollElement.height(), e = this.offsets, f = this.targets, g = this.activeTarget;
478 |         if (b >= d)return g != (a = f.last()[0]) && this.activate(a);
479 |         for (a = e.length; a--;)g != f[a] && b >= e[a] && (!e[a + 1] || b <= e[a + 1]) && this.activate(f[a])
480 |     }, b.prototype.activate = function (b) {
481 |         this.activeTarget = b, a(this.selector).parents(".active").removeClass("active");
482 |         var c = this.selector + '[data-target="' + b + '"],' + this.selector + '[href="' + b + '"]', d = a(c).parents("li").addClass("active");
483 |         d.parent(".dropdown-menu").length && (d = d.closest("li.dropdown").addClass("active")), d.trigger("activate")
484 |     };
485 |     var c = a.fn.scrollspy;
486 |     a.fn.scrollspy = function (c) {
487 |         return this.each(function () {
488 |             var d = a(this), e = d.data("bs.scrollspy"), f = "object" == typeof c && c;
489 |             e || d.data("bs.scrollspy", e = new b(this, f)), "string" == typeof c && e[c]()
490 |         })
491 |     }, a.fn.scrollspy.Constructor = b, a.fn.scrollspy.noConflict = function () {
492 |         return a.fn.scrollspy = c, this
493 |     }, a(window).on("load", function () {
494 |         a('[data-spy="scroll"]').each(function () {
495 |             var b = a(this);
496 |             b.scrollspy(b.data())
497 |         })
498 |     })
499 | }(window.jQuery), +function (a) {
500 |     "use strict";
501 |     var b = function (b) {
502 |         this.element = a(b)
503 |     };
504 |     b.prototype.show = function () {
505 |         var b = this.element, c = b.closest("ul:not(.dropdown-menu)"), d = b.attr("data-target");
506 |         if (d || (d = b.attr("href"), d = d && d.replace(/.*(?=#[^\s]*$)/, "")), !b.parent("li").hasClass("active")) {
507 |             var e = c.find(".active:last a")[0], f = a.Event("show.bs.tab", {relatedTarget: e});
508 |             if (b.trigger(f), !f.isDefaultPrevented()) {
509 |                 var g = a(d);
510 |                 this.activate(b.parent("li"), c), this.activate(g, g.parent(), function () {
511 |                     b.trigger({type: "shown.bs.tab", relatedTarget: e})
512 |                 })
513 |             }
514 |         }
515 |     }, b.prototype.activate = function (b, c, d) {
516 |         function e() {
517 |             f.removeClass("active").find("> .dropdown-menu > .active").removeClass("active"), b.addClass("active"), g ? (b[0].offsetWidth, b.addClass("in")) : b.removeClass("fade"), b.parent(".dropdown-menu") && b.closest("li.dropdown").addClass("active"), d && d()
518 |         }
519 | 
520 |         var f = c.find("> .active"), g = d && a.support.transition && f.hasClass("fade");
521 |         g ? f.one(a.support.transition.end, e).emulateTransitionEnd(150) : e(), f.removeClass("in")
522 |     };
523 |     var c = a.fn.tab;
524 |     a.fn.tab = function (c) {
525 |         return this.each(function () {
526 |             var d = a(this), e = d.data("bs.tab");
527 |             e || d.data("bs.tab", e = new b(this)), "string" == typeof c && e[c]()
528 |         })
529 |     }, a.fn.tab.Constructor = b, a.fn.tab.noConflict = function () {
530 |         return a.fn.tab = c, this
531 |     }, a(document).on("click.bs.tab.data-api", '[data-toggle="tab"], [data-toggle="pill"]', function (b) {
532 |         b.preventDefault(), a(this).tab("show")
533 |     })
534 | }(window.jQuery), +function (a) {
535 |     "use strict";
536 |     var b = function (c, d) {
537 |         this.options = a.extend({}, b.DEFAULTS, d), this.$window = a(window).on("scroll.bs.affix.data-api", a.proxy(this.checkPosition, this)).on("click.bs.affix.data-api", a.proxy(this.checkPositionWithEventLoop, this)), this.$element = a(c), this.affixed = this.unpin = null, this.checkPosition()
538 |     };
539 |     b.RESET = "affix affix-top affix-bottom", b.DEFAULTS = {offset: 0}, b.prototype.checkPositionWithEventLoop = function () {
540 |         setTimeout(a.proxy(this.checkPosition, this), 1)
541 |     }, b.prototype.checkPosition = function () {
542 |         if (this.$element.is(":visible")) {
543 |             var c = a(document).height(), d = this.$window.scrollTop(), e = this.$element.offset(), f = this.options.offset, g = f.top, h = f.bottom;
544 |             "object" != typeof f && (h = g = f), "function" == typeof g && (g = f.top()), "function" == typeof h && (h = f.bottom());
545 |             var i = null != this.unpin && d + this.unpin <= e.top ? !1 : null != h && e.top + this.$element.height() >= c - h ? "bottom" : null != g && g >= d ? "top" : !1;
546 |             this.affixed !== i && (this.unpin && this.$element.css("top", ""), this.affixed = i, this.unpin = "bottom" == i ? e.top - d : null, this.$element.removeClass(b.RESET).addClass("affix" + (i ? "-" + i : "")), "bottom" == i && this.$element.offset({top: document.body.offsetHeight - h - this.$element.height()}))
547 |         }
548 |     };
549 |     var c = a.fn.affix;
550 |     a.fn.affix = function (c) {
551 |         return this.each(function () {
552 |             var d = a(this), e = d.data("bs.affix"), f = "object" == typeof c && c;
553 |             e || d.data("bs.affix", e = new b(this, f)), "string" == typeof c && e[c]()
554 |         })
555 |     }, a.fn.affix.Constructor = b, a.fn.affix.noConflict = function () {
556 |         return a.fn.affix = c, this
557 |     }, a(window).on("load", function () {
558 |         a('[data-spy="affix"]').each(function () {
559 |             var b = a(this), c = b.data();
560 |             c.offset = c.offset || {}, c.offsetBottom && (c.offset.bottom = c.offsetBottom), c.offsetTop && (c.offset.top = c.offsetTop), b.affix(c)
561 |         })
562 |     })
563 | }(window.jQuery);


--------------------------------------------------------------------------------
/src/service_provider/static/robots.txt:
--------------------------------------------------------------------------------
1 | User-agent: *
2 | Disallow: /
3 | 


--------------------------------------------------------------------------------
/src/service_provider/static/style.css:
--------------------------------------------------------------------------------
1 | body {
2 |     min-height: 2000px;
3 |     padding-top: 70px;
4 | }


--------------------------------------------------------------------------------
/src/test_app/test_app.c:
--------------------------------------------------------------------------------
 1 | /*
 2 |  * From https://github.com/beatgammit/simple-pam
 3 |  *
 4 |  * To compile it: gcc -o test_app test_app.c -lpam -lpam_misc
 5 |  *
 6 |  * Simple example PAM config (Ubuntu: in the file /etc/pam.d/test_app):
 7 |  *  auth requisite pam_oidc_authz.so <url to service provider> <verify_ssl {0, 1}>
 8 |  *  account sufficient pam_permit.so
 9 |  *
10 |  */
11 | 
12 | #include <security/pam_appl.h>
13 | #include <security/pam_misc.h>
14 | #include <stdio.h>
15 | 
16 | /*
17 |  * Simple conversation function for PAM, which reads data from file instead
18 |  * of prompting the user.
19 |  */
20 | int conv_func(int num_msg, const struct pam_message **msg,
21 |                 struct pam_response **resp, void *appdata_ptr) {
22 |     struct pam_response *reply = malloc(sizeof(struct pam_response));
23 | 
24 |     FILE *fp = fopen(appdata_ptr, "r");
25 |     char* data = calloc(200, sizeof(char));
26 |     fgets(data, 200, fp);
27 |     fclose(fp);
28 | 
29 |     /* Remove trailing newline (if any) */
30 |     data[strcspn(data, "\n")] = 0;
31 | 
32 |     reply[0].resp = data;
33 |     reply[0].resp_retcode = 0;
34 | 
35 |     *resp = reply;
36 |     return PAM_SUCCESS;
37 | }
38 | 
39 | int main(int argc, char *argv[]) {
40 | 	pam_handle_t* pamh = NULL;
41 | 	int retval;
42 | 
43 | 	if(argc != 3) {
44 | 		printf("Usage: %s <username> <access_token_file>\n", argv[0]);
45 | 		exit(1);
46 | 	}
47 | 
48 | 	const struct pam_conv conv = {
49 | 	    conv_func,
50 | 	    argv[2] /* Send the filename as app data */
51 |     };
52 | 
53 | 	/* Initialize PAM transaction */
54 | 	const char* user = argv[1];
55 | 	retval = pam_start("test_app", user, &conv, &pamh);
56 | 
57 | 	// Are the credentials correct?
58 | 	if (retval == PAM_SUCCESS) {
59 | 		printf("Credentials accepted.\n");
60 | 		retval = pam_authenticate(pamh, 0);
61 | 	}
62 | 
63 | 	// Can the accound be used at this time?
64 | 	if (retval == PAM_SUCCESS) {
65 | 		printf("Account is valid.\n");
66 | 		retval = pam_acct_mgmt(pamh, 0);
67 | 	}
68 | 
69 | 	// Did everything work?
70 | 	if (retval == PAM_SUCCESS) {
71 | 		printf("Authenticated\n");
72 | 	} else {
73 | 		printf("Not Authenticated\n");
74 | 	}
75 | 
76 | 	// close PAM (end session)
77 | 	if (pam_end(pamh, retval) != PAM_SUCCESS) {
78 | 		pamh = NULL;
79 | 		printf("check_user: failed to release authenticator\n");
80 | 		exit(1);
81 | 	}
82 | 
83 | 	return retval == PAM_SUCCESS ? 0 : 1;
84 | }


--------------------------------------------------------------------------------
/src/test_application_login_service/login_server.py:
--------------------------------------------------------------------------------
 1 | #!/usr/bin/env python
 2 | 
 3 | import argparse
 4 | from mako.lookup import TemplateLookup
 5 | from oic.utils.http_util import Response
 6 | 
 7 | LOOKUP = TemplateLookup(directories=['templates'],
 8 |                         module_directory='modules',
 9 |                         input_encoding='utf-8',
10 |                         output_encoding='utf-8')
11 | 
12 | def login_page(environ, start_response):
13 |     resp = Response(mako_template="login_page.mako",
14 |                     template_lookup=LOOKUP,
15 |                     headers=[])
16 |     argv = {"service_provider_url": SERVICE_PROVIDER_URL}
17 |     return resp(environ, start_response, **argv)
18 | 
19 | def application(environ, start_response):
20 |     return login_page(environ, start_response)
21 | 
22 | if __name__ == '__main__':
23 |     from beaker.middleware import SessionMiddleware
24 |     from cherrypy import wsgiserver
25 | 
26 |     parser = argparse.ArgumentParser()
27 |     parser.add_argument('-p', dest='port', default=80, type=int)
28 |     parser.add_argument(dest='service_provider_url')
29 |     args = parser.parse_args()
30 | 
31 |     SERVICE_PROVIDER_URL = args.service_provider_url
32 | 
33 |     SRV = wsgiserver.CherryPyWSGIServer(('0.0.0.0', args.port),
34 |                                         SessionMiddleware(application))
35 | 
36 |     print "Login server starting listening on port:%s" % args.port
37 |     try:
38 |         SRV.start()
39 |     except KeyboardInterrupt:
40 |         SRV.stop()


--------------------------------------------------------------------------------
/src/test_application_login_service/templates/login_page.mako:
--------------------------------------------------------------------------------
 1 | <!DOCTYPE html>
 2 | <html>
 3 | <head lang="en">
 4 |     <meta charset="UTF-8">
 5 |     <title></title>
 6 | </head>
 7 | <body>
 8 | 
 9 |     <form action="${service_provider_url}" method="GET">
10 |         Please enter your username:<br>
11 |         <input type="text" name="username">
12 | 
13 |         <input type="submit" value="Submit">
14 |     </form>
15 | 
16 | </body>
17 | </html>


--------------------------------------------------------------------------------