From c9aac8a49dec92e31a1220fc700f65c6b82fdbcc Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Aur=C3=A9lien=20Delobelle?= <aurelien.delobelle@gmail.com>
Date: Thu, 10 Aug 2017 15:02:08 +0200
Subject: [PATCH 001/101] [WIP] Tests for kfet views

---
 kfet/tests/test_views.py | 360 ++++++++++++++++++++++++++++++++++++---
 kfet/tests/testcases.py  | 142 +++++++++++++++
 kfet/tests/utils.py      | 105 ++++++++++++
 3 files changed, 585 insertions(+), 22 deletions(-)
 create mode 100644 kfet/tests/testcases.py
 create mode 100644 kfet/tests/utils.py

diff --git a/kfet/tests/test_views.py b/kfet/tests/test_views.py
index ec9d6ffc..f7457786 100644
--- a/kfet/tests/test_views.py
+++ b/kfet/tests/test_views.py
@@ -1,26 +1,243 @@
+import json
 from decimal import Decimal
-from unittest.mock import patch
 
-from django.test import TestCase, Client
-from django.contrib.auth.models import User
+from django.contrib.auth.models import Group, Permission
+from django.core.urlresolvers import reverse
+from django.test import Client, TestCase
 from django.utils import timezone
 
-from ..models import Account, OperationGroup, Checkout, Operation
+from ..models import Account, Checkout, Operation, OperationGroup
+
+from .testcases import ViewTestCaseMixin
+from .utils import create_team, create_user
 
 
-class AccountTests(TestCase):
-    """Account related views"""
+class LoginGenericTeamViewTests(ViewTestCaseMixin, TestCase):
+    url_name = 'kfet.login.genericteam'
+    url_expected = '/k-fet/login/genericteam'
+
+    auth_user = 'team'
+    auth_forbidden = [None, 'user']
+
+    def test_ok(self):
+        r = self.client.get(self.url)
+        self.assertEqual(r.status_code, 200)
+        logged_in_username = r.wsgi_request.user.username
+        self.assertEqual(logged_in_username, 'kfet_genericteam')
+
+
+class AccountListViewTests(ViewTestCaseMixin, TestCase):
+    url_name = 'kfet.account'
+    url_expected = '/k-fet/accounts/'
+
+    auth_user = 'team'
+    auth_forbidden = [None, 'user']
+
+    def test_ok(self):
+        r = self.client.get(self.url)
+        self.assertEqual(r.status_code, 200)
+
+
+class AccountValidFreeTests(ViewTestCaseMixin, TestCase):
+    url_name = 'kfet.account.is_validandfree.ajax'
+    url_expected = '/k-fet/accounts/is_validandfree'
+
+    auth_user = 'team'
+    auth_forbidden = [None, 'user']
+
+    def test_ok_isvalid_isfree(self):
+        """Upper case trigramme not taken is valid and free."""
+        r = self.client.get(self.url, {'trigramme': 'AAA'})
+        self.assertDictEqual(json.loads(r.content.decode('utf-8')), {
+            'is_valid': True,
+            'is_free': True,
+        })
+
+    def test_ok_isvalid_notfree(self):
+        """Already taken trigramme is not free, but valid."""
+        r = self.client.get(self.url, {'trigramme': '000'})
+        self.assertDictEqual(json.loads(r.content.decode('utf-8')), {
+            'is_valid': True,
+            'is_free': False,
+        })
+
+    def test_ok_notvalid_isfree(self):
+        """Lower case if forbidden but free."""
+        r = self.client.get(self.url, {'trigramme': 'aaa'})
+        self.assertDictEqual(json.loads(r.content.decode('utf-8')), {
+            'is_valid': False,
+            'is_free': True,
+        })
+
+
+class AccountCreateViewTests(ViewTestCaseMixin, TestCase):
+    url_name = 'kfet.account.create'
+    url_expected = '/k-fet/accounts/new'
+
+    auth_user = 'team'
+    auth_forbidden = [None, 'user']
+
+    @property
+    def users_extra(self):
+        return {
+            'team__add_account': create_team(
+                'team__add_account', '101',
+                perms=['kfet.add_account'],
+            ),
+        }
+
+    def test_get_ok(self):
+        r = self.client.get(self.url)
+        self.assertEqual(r.status_code, 200)
+
+    def test_post_ok(self):
+        post_data = {
+            'trigramme': 'AAA',
+            'username': 'plopplopplop',
+            'first_name': 'first',
+            'last_name': 'last',
+            'email': 'email@domain.net',
+        }
+
+        client = Client()
+        client.login(
+            username='team__add_account',
+            password='team__add_account',
+        )
+        r = client.post(self.url, post_data)
+
+        self.assertRedirects(r, self.url)
+        a = Account.objects.get(trigramme='AAA')
+        self.assertEqual(a.username, 'plopplopplop')
+
+    def test_post_forbidden(self):
+        post_data = {
+            'trigramme': 'AAA',
+            'username': 'plopplopplop',
+            'first_name': 'first',
+            'last_name': 'last',
+            'email': 'email@domain.net',
+        }
+
+        # A team member (without kfet.add_account) is authenticated with
+        # self.client.
+        r = self.client.post(self.url, post_data)
+
+        self.assertEqual(r.status_code, 200)
+        with self.assertRaises(Account.DoesNotExist):
+            Account.objects.get(trigramme='AAA')
+
+
+class AccountCreateAjaxViewTests(ViewTestCaseMixin, TestCase):
+    urls_conf = [
+        {
+            'name': 'kfet.account.create.fromuser',
+            'kwargs': {'username': 'user'},
+            'expected': '/k-fet/accounts/new/user/user',
+        },
+        {
+            'name': 'kfet.account.create.fromclipper',
+            'kwargs': {
+                'login_clipper': 'myclipper',
+                'fullname': 'first last1 last2',
+            },
+            'expected': (
+                '/k-fet/accounts/new/clipper/myclipper/first%20last1%20last2'
+            ),
+        },
+        {
+            'name': 'kfet.account.create.empty',
+            'expected': '/k-fet/accounts/new/empty',
+        },
+    ]
+
+    auth_user = 'team'
+    auth_forbidden = [None, 'user']
+
+    def test_fromuser(self):
+        r = self.client.get(self.t_urls[0])
+
+        user = self.users['user']
+
+        self.assertEqual(r.status_code, 200)
+        self.assertEqual(r.context['user_form'].instance, user)
+        self.assertEqual(r.context['cof_form'].instance, user.profile)
+        self.assertIn('account_form', r.context)
+
+    def test_fromclipper(self):
+        r = self.client.get(self.t_urls[1])
+
+        self.assertEqual(r.status_code, 200)
+        self.assertIn('user_form', r.context)
+        self.assertIn('cof_form', r.context)
+        self.assertIn('account_form', r.context)
+
+    def test_empty(self):
+        r = self.client.get(self.t_urls[0])
+
+        self.assertEqual(r.status_code, 200)
+        self.assertIn('user_form', r.context)
+        self.assertIn('cof_form', r.context)
+        self.assertIn('account_form', r.context)
+
+
+class AccountCreateAutocompleteViewTests(ViewTestCaseMixin, TestCase):
+    url_name = 'kfet.account.create.autocomplete'
+    url_expected = '/k-fet/autocomplete/account_new'
+
+    auth_user = 'team'
+    auth_forbidden = [None, 'user']
+
+    def test_ok(self):
+        r = self.client.get(self.url, {'q': 'first'})
+        self.assertEqual(r.status_code, 200)
+        self.assertListEqual(list(r.context['users_notcof']), [])
+        self.assertListEqual(list(r.context['users_cof']), [])
+        self.assertListEqual(
+            list(r.context['kfet']),
+            [(self.accounts['user'], self.users['user'])],
+        )
+
+
+class AccountSearchViewTests(ViewTestCaseMixin, TestCase):
+    url_name = 'kfet.account.search.autocomplete'
+    url_expected = '/k-fet/autocomplete/account_search'
+
+    auth_user = 'team'
+    auth_forbidden = [None, 'user']
+
+    def test_ok(self):
+        r = self.client.get(self.url, {'q': 'first'})
+        self.assertEqual(r.status_code, 200)
+        self.assertListEqual(
+            list(r.context['accounts']),
+            [('000', 'first last')],
+        )
+
+
+class AccountReadViewTests(ViewTestCaseMixin, TestCase):
+    url_name = 'kfet.account.read'
+    url_kwargs = {'trigramme': '001'}
+    url_expected = '/k-fet/accounts/001'
+
+    auth_user = 'team'
+    auth_forbidden = [None, 'user']
+
+    @property
+    def users_extra(self):
+        return {
+            'user1': create_user('user1', '001'),
+        }
 
     def setUp(self):
-        # A user and its account
-        self.user = User.objects.create_user(username="foobar", password="foo")
-        acc = Account.objects.create(
-            trigramme="FOO", cofprofile=self.user.profile
-        )
+        super().setUp()
+
+        user1_acc = self.accounts['user1']
+        team_acc = self.accounts['team']
 
         # Dummy operations and operation groups
         checkout = Checkout.objects.create(
-            created_by=acc, name="checkout",
+            created_by=team_acc, name="checkout",
             valid_from=timezone.now(),
             valid_to=timezone.now() + timezone.timedelta(days=365)
         )
@@ -30,7 +247,7 @@ class AccountTests(TestCase):
         ]
         OperationGroup.objects.bulk_create([
             OperationGroup(
-                on_acc=acc, checkout=checkout, at=at, is_cof=False,
+                on_acc=user1_acc, checkout=checkout, at=at, is_cof=False,
                 amount=amount
             )
             for (at, amount) in opeg_data
@@ -47,13 +264,112 @@ class AccountTests(TestCase):
             amount=Decimal('3')
         )
 
-    @patch('gestioncof.signals.messages')
-    def test_account_read(self, mock_messages):
-        """We can query the  "Account - Read" page."""
+    def test_ok(self):
+        """We can query the "Account - Read" page."""
+        r = self.client.get(self.url)
+        self.assertEqual(r.status_code, 200)
+
+    def test_ok_self(self):
         client = Client()
-        self.assertTrue(client.login(
-            username="foobar",
-            password="foo"
-        ))
-        resp = client.get("/k-fet/accounts/FOO")
-        self.assertEqual(200, resp.status_code)
+        client.login(username='user1', password='user1')
+        r = client.get(self.url)
+        self.assertEqual(r.status_code, 200)
+
+
+class AccountUpdateViewTests(ViewTestCaseMixin, TestCase):
+    url_name = 'kfet.account.update'
+    url_kwargs = {'trigramme': '001'}
+    url_expected = '/k-fet/accounts/001/edit'
+
+    auth_user = 'team'
+    auth_forbidden = [None, 'user']
+
+    @property
+    def users_extra(self):
+        return {
+            'user1': create_user('user1', '001'),
+        }
+
+    def test_ok(self):
+        r = self.client.get(self.url)
+        self.assertEqual(r.status_code, 200)
+
+    def test_ok_self(self):
+        client = Client()
+        client.login(username='user1', password='user1')
+        r = client.get(self.url)
+        self.assertEqual(r.status_code, 200)
+
+
+class BaseAccountGroupViewTests(ViewTestCaseMixin):
+    auth_user = 'team__manage_perms'
+    auth_forbidden = [None, 'user', 'team']
+
+    @property
+    def users_extra(self):
+        return {
+            'team__manage_perms': create_team(
+                'team__manage_perms', '101',
+                perms=['kfet.manage_perms'],
+            ),
+        }
+
+
+class AccountGroupListViewTests(BaseAccountGroupViewTests, TestCase):
+    url_name = 'kfet.account.group'
+    url_expected = '/k-fet/accounts/groups'
+
+    def test_ok(self):
+        r = self.client.get(self.url)
+        self.assertEqual(r.status_code, 200)
+
+        self.assertQuerysetEqual(
+            r.context['groups'],
+            Group.objects.filter(name__icontains='K-Fêt'),
+            ordered=False,
+        )
+
+
+class AccountGroupCreateViewTests(BaseAccountGroupViewTests, TestCase):
+    url_name = 'kfet.account.group.create'
+    url_expected = '/k-fet/accounts/groups/new'
+
+    def test_ok(self):
+        r = self.client.get(self.url)
+        self.assertEqual(r.status_code, 200)
+
+
+class AccountGroupUpdateViewTests(BaseAccountGroupViewTests, TestCase):
+    url_name = 'kfet.account.group.update'
+    url_kwargs = {'pk': 42}
+    url_expected = '/k-fet/accounts/groups/42/edit'
+
+    def setUp(self):
+        super().setUp()
+        self.group1 = Group.objects.create(pk=42, name='K-Fêt - Group')
+        self.group1.permissions = [
+            Permission.objects.get(
+                content_type__app_label='kfet',
+                codename='is_team',
+            )
+        ]
+
+    def test_get_ok(self):
+        r = self.client.get(self.url)
+        self.assertEqual(r.status_code, 200)
+
+    def test_post_ok(self):
+        post_data = {
+            'name': 'Group42',
+            'permissions': (
+                self.group1.permissions
+                .values_list('pk', flat=True)
+            ),
+        }
+
+        r = self.client.post(self.url, post_data)
+
+        self.assertRedirects(r, reverse('kfet.account.group'))
+
+        self.group1.refresh_from_db()
+        self.assertEqual(self.group1.name, 'K-Fêt Group42')
diff --git a/kfet/tests/testcases.py b/kfet/tests/testcases.py
new file mode 100644
index 00000000..c2e1b848
--- /dev/null
+++ b/kfet/tests/testcases.py
@@ -0,0 +1,142 @@
+from unittest import mock
+
+from django.core.urlresolvers import reverse
+from django.http import QueryDict
+from django.test import Client
+
+from .utils import create_root, create_team, create_user
+
+
+class ViewTestCaseMixin:
+    url_name = None
+    url_expected = None
+
+    auth_user = None
+    auth_forbidden = []
+
+    def setUp(self):
+        # Signals handlers on login/logout send messages.
+        # Due to the way the Django' test Client performs login, this raise an
+        # error. As workaround, we mock the Django' messages module.
+        patcher_messages = mock.patch('gestioncof.signals.messages')
+        patcher_messages.start()
+        self.addCleanup(patcher_messages.stop)
+
+        self.users = {}
+        self.accounts = {}
+
+        for label, user in {**self.users_base, **self.users_extra}.items():
+            self.register_user(label, user)
+
+        if self.auth_user:
+            # The wrapper is a sanity check.
+            self.assertTrue(
+                self.client.login(
+                    username=self.auth_user,
+                    password=self.auth_user,
+                )
+            )
+
+    @property
+    def users_base(self):
+        # Format desc: username, password, trigramme
+        return {
+            # user, user, 000
+            'user': create_user(),
+            # team, team, 100
+            'team': create_team(),
+            # root, root, 200
+            'root': create_root(),
+        }
+
+    @property
+    def users_extra(self):
+        return {}
+
+    def register_user(self, label, user):
+        self.users[label] = user
+        if hasattr(user.profile, 'account_kfet'):
+            self.accounts[label] = user.profile.account_kfet
+
+    @property
+    def urls_conf(self):
+        return [{
+            'name': self.url_name,
+            'args': getattr(self, 'url_args', []),
+            'kwargs': getattr(self, 'url_kwargs', {}),
+            'expected': self.url_expected,
+        }]
+
+    @property
+    def t_urls(self):
+        return [
+            reverse(
+                url_conf['name'],
+                args=url_conf.get('args', []),
+                kwargs=url_conf.get('kwargs', {}),
+            )
+            for url_conf in self.urls_conf]
+
+    @property
+    def url(self):
+        return self.t_urls[0]
+
+    def assertForbidden(self, response):
+        request = response.wsgi_request
+
+        try:
+            try:
+                # Is this an HTTP Forbidden response ?
+                self.assertEqual(response.status_code, 403)
+            except AssertionError:
+                # A redirection to the login view is fine too.
+
+                # Let's build the login url with the 'next' param on current
+                # page.
+                full_path = request.get_full_path()
+
+                querystring = QueryDict(mutable=True)
+                querystring['next'] = full_path
+
+                login_url = '/login?' + querystring.urlencode(safe='/')
+
+                # We don't focus on what the login view does.
+                # So don't fetch the redirect.
+                self.assertRedirects(
+                    response, login_url,
+                    fetch_redirect_response=False,
+                )
+        except AssertionError:
+            raise AssertionError(
+                "%(http_method)s request at %(path)s should be forbidden for "
+                "%(username)s user.\n"
+                "Response isn't 403, nor a redirect to login view. Instead, "
+                "response code is %(code)d." % {
+                    'http_method': request.method,
+                    'path': request.get_full_path(),
+                    'username': (
+                        "'{}'".format(request.user.username)
+                        if request.user.username
+                        else 'anonymous'
+                    ),
+                    'code': response.status_code,
+                }
+            )
+
+    def assertForbiddenKfet(self, response):
+        self.assertEqual(response.status_code, 200)
+        form = response.context['form']
+        self.assertIn("Permission refusée", form.non_field_errors)
+
+    def test_urls(self):
+        for url, conf in zip(self.t_urls, self.urls_conf):
+            self.assertEqual(url, conf['expected'])
+
+    def test_forbidden(self):
+        for creds in self.auth_forbidden:
+            for url in self.t_urls:
+                client = Client()
+                if creds is not None:
+                    client.login(username=creds, password=creds)
+                r = client.get(url)
+                self.assertForbidden(r)
diff --git a/kfet/tests/utils.py b/kfet/tests/utils.py
new file mode 100644
index 00000000..4b739003
--- /dev/null
+++ b/kfet/tests/utils.py
@@ -0,0 +1,105 @@
+from django.contrib.auth import get_user_model
+from django.contrib.auth.models import Permission
+
+from ..models import Account
+
+
+User = get_user_model()
+
+
+def user_add_perms(user, perms_labels):
+    """
+    Add perms to a user.
+
+    Args:
+        user (User instance)
+        perms (list of str 'app.perm_name')
+
+    Returns:
+        The same user (refetched from DB to avoid missing perms)
+
+    """
+    u_labels = set(perms_labels)
+
+    perms = []
+    for label in u_labels:
+        app_label, codename = label.split('.', 1)
+        perms.append(
+            Permission.objects.get(
+                content_type__app_label=app_label,
+                codename=codename,
+            )
+        )
+
+    user.user_permissions.add(*perms)
+
+    # If permissions have already been fetched for this user, we need to reload
+    # it to avoid using of the previous permissions cache.
+    # https://docs.djangoproject.com/en/1.11/topics/auth/default/#permission-caching
+    return User.objects.get(pk=user.pk)
+
+
+def _create_user_and_account(user_attrs, account_attrs, perms=None):
+    user_attrs.setdefault('password', user_attrs['username'])
+    user = User.objects.create_user(**user_attrs)
+
+    account_attrs['cofprofile'] = user.profile
+    kfet_pwd = account_attrs.pop('password', None)
+
+    account = Account.objects.create(**account_attrs)
+
+    if perms is not None:
+        user = user_add_perms(user, perms)
+
+        if 'kfet.is_team' in perms:
+            if kfet_pwd is None:
+                kfet_pwd = 'kfetpwd_{}'.format(user_attrs['password'])
+            account.change_pwd(kfet_pwd)
+            account.save()
+
+    return user
+
+
+def create_user(username='user', trigramme='000', **kwargs):
+    user_attrs = kwargs.setdefault('user_attrs', {})
+
+    user_attrs.setdefault('username', username)
+    user_attrs.setdefault('first_name', 'first')
+    user_attrs.setdefault('last_name', 'last')
+    user_attrs.setdefault('email', 'mail@user.net')
+
+    account_attrs = kwargs.setdefault('account_attrs', {})
+    account_attrs.setdefault('trigramme', trigramme)
+
+    return _create_user_and_account(**kwargs)
+
+
+def create_team(username='team', trigramme='100', **kwargs):
+    user_attrs = kwargs.setdefault('user_attrs', {})
+
+    user_attrs.setdefault('username', username)
+    user_attrs.setdefault('first_name', 'team')
+    user_attrs.setdefault('last_name', 'member')
+    user_attrs.setdefault('email', 'mail@team.net')
+
+    account_attrs = kwargs.setdefault('account_attrs', {})
+    account_attrs.setdefault('trigramme', trigramme)
+
+    perms = kwargs.setdefault('perms', [])
+    perms.append('kfet.is_team')
+
+    return _create_user_and_account(**kwargs)
+
+
+def create_root(username='root', trigramme='200', **kwargs):
+    user_attrs = kwargs.setdefault('user_attrs', {})
+
+    user_attrs.setdefault('username', username)
+    user_attrs.setdefault('first_name', 'super')
+    user_attrs.setdefault('last_name', 'user')
+    user_attrs.setdefault('email', 'mail@root.net')
+
+    account_attrs = kwargs.setdefault('account_attrs', {})
+    account_attrs.setdefault('trigramme', trigramme)
+
+    return _create_user_and_account(**kwargs)

From 2cfce1c921d3a75185a6131061ce5edc797d7c0c Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Aur=C3=A9lien=20Delobelle?= <aurelien.delobelle@gmail.com>
Date: Wed, 16 Aug 2017 17:45:59 +0200
Subject: [PATCH 002/101] Add tests for kfet views.

kfet.tests.testcases embed mixins for TestCase:
- TestCaseMixin provides assertion helpers,
- ViewTestCaseMixin provides a few basic tests, which are common to
every view.

kfet.tests.utils provides helpers for users and permissions management.

Each kfet view get a testcase (at least very basic) in
kfet.tests.test_views.
---
 kfet/tests/test_tests_utils.py |   95 ++
 kfet/tests/test_views.py       | 2121 ++++++++++++++++++++++++++++++--
 kfet/tests/testcases.py        |  180 ++-
 kfet/tests/utils.py            |   75 +-
 4 files changed, 2265 insertions(+), 206 deletions(-)
 create mode 100644 kfet/tests/test_tests_utils.py

diff --git a/kfet/tests/test_tests_utils.py b/kfet/tests/test_tests_utils.py
new file mode 100644
index 00000000..8308bd5b
--- /dev/null
+++ b/kfet/tests/test_tests_utils.py
@@ -0,0 +1,95 @@
+from django.contrib.auth import get_user_model
+from django.contrib.auth.models import Permission
+from django.contrib.contenttypes.models import ContentType
+from django.test import TestCase
+
+from gestioncof.models import CofProfile
+
+from ..models import Account
+from .testcases import TestCaseMixin
+from .utils import (
+    create_user, create_team, create_root, get_perms, user_add_perms,
+)
+
+
+User = get_user_model()
+
+
+class UserHelpersTests(TestCaseMixin, TestCase):
+
+    def test_create_user(self):
+        """create_user creates a basic user and its account."""
+        u = create_user()
+        a = u.profile.account_kfet
+
+        self.assertInstanceExpected(u, {
+            'get_full_name': 'first last',
+            'username': 'user',
+        })
+        self.assertFalse(u.user_permissions.exists())
+
+        self.assertEqual('000', a.trigramme)
+
+    def test_create_team(self):
+        u = create_team()
+        a = u.profile.account_kfet
+
+        self.assertInstanceExpected(u, {
+            'get_full_name': 'team member',
+            'username': 'team',
+        })
+        self.assertTrue(u.has_perm('kfet.is_team'))
+
+        self.assertEqual('100', a.trigramme)
+
+    def test_create_root(self):
+        u = create_root()
+        a = u.profile.account_kfet
+
+        self.assertInstanceExpected(u, {
+            'get_full_name': 'super user',
+            'username': 'root',
+            'is_superuser': True,
+            'is_staff': True,
+        })
+
+        self.assertEqual('200', a.trigramme)
+
+
+class PermHelpersTest(TestCaseMixin, TestCase):
+
+    def setUp(self):
+        cts = ContentType.objects.get_for_models(Account, CofProfile)
+        self.perm1 = Permission.objects.create(
+            content_type=cts[Account],
+            codename='test_perm',
+            name='Perm for test',
+        )
+        self.perm2 = Permission.objects.create(
+            content_type=cts[CofProfile],
+            codename='another_test_perm',
+            name='Another one',
+        )
+        self.perm_team = Permission.objects.get(
+            content_type__app_label='kfet',
+            codename='is_team',
+        )
+
+    def test_get_perms(self):
+        perms = get_perms('kfet.test_perm', 'gestioncof.another_test_perm')
+        self.assertDictEqual(perms, {
+            'kfet.test_perm': self.perm1,
+            'gestioncof.another_test_perm': self.perm2,
+        })
+
+    def test_user_add_perms(self):
+        user = User.objects.create_user(username='user', password='user')
+        user.user_permissions.add(self.perm1)
+
+        user_add_perms(user, ['kfet.is_team', 'gestioncof.another_test_perm'])
+
+        self.assertQuerysetEqual(
+            user.user_permissions.all(),
+            map(repr, [self.perm1, self.perm2, self.perm_team]),
+            ordered=False,
+        )
diff --git a/kfet/tests/test_views.py b/kfet/tests/test_views.py
index f7457786..5ac82f33 100644
--- a/kfet/tests/test_views.py
+++ b/kfet/tests/test_views.py
@@ -1,15 +1,21 @@
 import json
+from datetime import datetime, timedelta
 from decimal import Decimal
+from unittest import mock
 
-from django.contrib.auth.models import Group, Permission
+from django.contrib.auth.models import Group
 from django.core.urlresolvers import reverse
 from django.test import Client, TestCase
 from django.utils import timezone
 
-from ..models import Account, Checkout, Operation, OperationGroup
-
+from ..config import kfet_config
+from ..models import (
+    Account, Article, ArticleCategory, Checkout, CheckoutStatement, Inventory,
+    InventoryArticle, Operation, OperationGroup, Order, OrderArticle, Supplier,
+    SupplierArticle, Transfer, TransferGroup,
+)
 from .testcases import ViewTestCaseMixin
-from .utils import create_team, create_user
+from .utils import create_team, create_user, get_perms
 
 
 class LoginGenericTeamViewTests(ViewTestCaseMixin, TestCase):
@@ -22,8 +28,8 @@ class LoginGenericTeamViewTests(ViewTestCaseMixin, TestCase):
     def test_ok(self):
         r = self.client.get(self.url)
         self.assertEqual(r.status_code, 200)
-        logged_in_username = r.wsgi_request.user.username
-        self.assertEqual(logged_in_username, 'kfet_genericteam')
+        logged_in = r.wsgi_request.user
+        self.assertEqual(logged_in.username, 'kfet_genericteam')
 
 
 class AccountListViewTests(ViewTestCaseMixin, TestCase):
@@ -74,16 +80,23 @@ class AccountCreateViewTests(ViewTestCaseMixin, TestCase):
     url_name = 'kfet.account.create'
     url_expected = '/k-fet/accounts/new'
 
+    http_methods = ['GET', 'POST']
+
     auth_user = 'team'
     auth_forbidden = [None, 'user']
 
+    post_data = {
+        'trigramme': 'AAA',
+        'username': 'plopplopplop',
+        'first_name': 'first',
+        'last_name': 'last',
+        'email': 'email@domain.net',
+    }
+
     @property
     def users_extra(self):
         return {
-            'team__add_account': create_team(
-                'team__add_account', '101',
-                perms=['kfet.add_account'],
-            ),
+            'team1': create_team('team1', '101', perms=['kfet.add_account']),
         }
 
     def test_get_ok(self):
@@ -91,91 +104,69 @@ class AccountCreateViewTests(ViewTestCaseMixin, TestCase):
         self.assertEqual(r.status_code, 200)
 
     def test_post_ok(self):
-        post_data = {
-            'trigramme': 'AAA',
+        client = Client()
+        client.login(username='team1', password='team1')
+
+        r = client.post(self.url, self.post_data)
+        self.assertRedirects(r, reverse('kfet.account.create'))
+
+        account = Account.objects.get(trigramme='AAA')
+
+        self.assertInstanceExpected(account, {
             'username': 'plopplopplop',
             'first_name': 'first',
             'last_name': 'last',
-            'email': 'email@domain.net',
-        }
-
-        client = Client()
-        client.login(
-            username='team__add_account',
-            password='team__add_account',
-        )
-        r = client.post(self.url, post_data)
-
-        self.assertRedirects(r, self.url)
-        a = Account.objects.get(trigramme='AAA')
-        self.assertEqual(a.username, 'plopplopplop')
+        })
 
     def test_post_forbidden(self):
-        post_data = {
-            'trigramme': 'AAA',
-            'username': 'plopplopplop',
-            'first_name': 'first',
-            'last_name': 'last',
-            'email': 'email@domain.net',
-        }
-
-        # A team member (without kfet.add_account) is authenticated with
-        # self.client.
-        r = self.client.post(self.url, post_data)
-
-        self.assertEqual(r.status_code, 200)
-        with self.assertRaises(Account.DoesNotExist):
-            Account.objects.get(trigramme='AAA')
+        r = self.client.post(self.url, self.post_data)
+        self.assertForbiddenKfet(r)
 
 
 class AccountCreateAjaxViewTests(ViewTestCaseMixin, TestCase):
-    urls_conf = [
-        {
-            'name': 'kfet.account.create.fromuser',
-            'kwargs': {'username': 'user'},
-            'expected': '/k-fet/accounts/new/user/user',
+    urls_conf = [{
+        'name': 'kfet.account.create.fromuser',
+        'kwargs': {'username': 'user'},
+        'expected': '/k-fet/accounts/new/user/user',
+    }, {
+        'name': 'kfet.account.create.fromclipper',
+        'kwargs': {
+            'login_clipper': 'myclipper',
+            'fullname': 'first last1 last2',
         },
-        {
-            'name': 'kfet.account.create.fromclipper',
-            'kwargs': {
-                'login_clipper': 'myclipper',
-                'fullname': 'first last1 last2',
-            },
-            'expected': (
-                '/k-fet/accounts/new/clipper/myclipper/first%20last1%20last2'
-            ),
-        },
-        {
-            'name': 'kfet.account.create.empty',
-            'expected': '/k-fet/accounts/new/empty',
-        },
-    ]
+        'expected': (
+            '/k-fet/accounts/new/clipper/myclipper/first%20last1%20last2'
+        ),
+    }, {
+        'name': 'kfet.account.create.empty',
+        'expected': '/k-fet/accounts/new/empty',
+    }]
 
     auth_user = 'team'
     auth_forbidden = [None, 'user']
 
     def test_fromuser(self):
         r = self.client.get(self.t_urls[0])
+        self.assertEqual(r.status_code, 200)
 
         user = self.users['user']
 
-        self.assertEqual(r.status_code, 200)
         self.assertEqual(r.context['user_form'].instance, user)
         self.assertEqual(r.context['cof_form'].instance, user.profile)
         self.assertIn('account_form', r.context)
 
     def test_fromclipper(self):
         r = self.client.get(self.t_urls[1])
-
         self.assertEqual(r.status_code, 200)
+
         self.assertIn('user_form', r.context)
         self.assertIn('cof_form', r.context)
         self.assertIn('account_form', r.context)
 
     def test_empty(self):
-        r = self.client.get(self.t_urls[0])
-
+        r = self.client.get(self.t_urls[2])
         self.assertEqual(r.status_code, 200)
+
         self.assertIn('user_form', r.context)
         self.assertIn('cof_form', r.context)
         self.assertIn('account_form', r.context)
@@ -191,12 +182,11 @@ class AccountCreateAutocompleteViewTests(ViewTestCaseMixin, TestCase):
     def test_ok(self):
         r = self.client.get(self.url, {'q': 'first'})
         self.assertEqual(r.status_code, 200)
-        self.assertListEqual(list(r.context['users_notcof']), [])
-        self.assertListEqual(list(r.context['users_cof']), [])
-        self.assertListEqual(
-            list(r.context['kfet']),
-            [(self.accounts['user'], self.users['user'])],
-        )
+        self.assertEqual(len(r.context['users_notcof']), 0)
+        self.assertEqual(len(r.context['users_cof']), 0)
+        self.assertSetEqual(set(r.context['kfet']), set([
+            (self.accounts['user'], self.users['user']),
+        ]))
 
 
 class AccountSearchViewTests(ViewTestCaseMixin, TestCase):
@@ -209,10 +199,9 @@ class AccountSearchViewTests(ViewTestCaseMixin, TestCase):
     def test_ok(self):
         r = self.client.get(self.url, {'q': 'first'})
         self.assertEqual(r.status_code, 200)
-        self.assertListEqual(
-            list(r.context['accounts']),
-            [('000', 'first last')],
-        )
+        self.assertSetEqual(set(r.context['accounts']), set([
+            ('000', 'first last'),
+        ]))
 
 
 class AccountReadViewTests(ViewTestCaseMixin, TestCase):
@@ -281,43 +270,105 @@ class AccountUpdateViewTests(ViewTestCaseMixin, TestCase):
     url_kwargs = {'trigramme': '001'}
     url_expected = '/k-fet/accounts/001/edit'
 
+    http_methods = ['GET', 'POST']
+
     auth_user = 'team'
     auth_forbidden = [None, 'user']
 
+    post_data = {
+        # User
+        'first_name': 'The first',
+        'last_name': 'The last',
+        'email': '',
+        # Group
+        'groups[]': [],
+        # Account
+        'trigramme': '051',
+        'nickname': '',
+        'promo': '',
+        # 'is_frozen': not checked
+        # Account password
+        'pwd1': '',
+        'pwd2': '',
+    }
+
     @property
     def users_extra(self):
         return {
             'user1': create_user('user1', '001'),
+            'team1': create_team('team1', '101', perms=[
+                'kfet.change_account',
+            ]),
         }
 
-    def test_ok(self):
+    def test_get_ok(self):
         r = self.client.get(self.url)
         self.assertEqual(r.status_code, 200)
 
-    def test_ok_self(self):
+    def test_get_ok_self(self):
         client = Client()
         client.login(username='user1', password='user1')
         r = client.get(self.url)
         self.assertEqual(r.status_code, 200)
 
+    def test_post_ok(self):
+        client = Client()
+        client.login(username='team1', password='team1')
 
-class BaseAccountGroupViewTests(ViewTestCaseMixin):
-    auth_user = 'team__manage_perms'
+        r = client.post(self.url, self.post_data)
+        self.assertRedirects(r, reverse('kfet.account.read', args=['051']))
+
+        self.accounts['user1'].refresh_from_db()
+        self.users['user1'].refresh_from_db()
+
+        self.assertInstanceExpected(self.accounts['user1'], {
+            'first_name': 'The first',
+            'last_name': 'The last',
+            'trigramme': '051',
+        })
+
+    def test_post_ok_self(self):
+        client = Client()
+        client.login(username='user1', password='user1')
+
+        post_data = {
+            'first_name': 'The first',
+            'last_name': 'The last',
+        }
+
+        r = client.post(self.url, post_data)
+        self.assertRedirects(r, reverse('kfet.account.read', args=['001']))
+
+        self.accounts['user1'].refresh_from_db()
+        self.users['user1'].refresh_from_db()
+
+        self.assertInstanceExpected(self.accounts['user1'], {
+            'first_name': 'The first',
+            'last_name': 'The last',
+        })
+
+    def test_post_forbidden(self):
+        r = self.client.post(self.url, self.post_data)
+        self.assertForbiddenKfet(r)
+
+
+class AccountGroupListViewTests(ViewTestCaseMixin, TestCase):
+    url_name = 'kfet.account.group'
+    url_expected = '/k-fet/accounts/groups'
+
+    auth_user = 'team1'
     auth_forbidden = [None, 'user', 'team']
 
     @property
     def users_extra(self):
         return {
-            'team__manage_perms': create_team(
-                'team__manage_perms', '101',
-                perms=['kfet.manage_perms'],
-            ),
+            'team1': create_team('team1', '101', perms=['kfet.manage_perms']),
         }
 
-
-class AccountGroupListViewTests(BaseAccountGroupViewTests, TestCase):
-    url_name = 'kfet.account.group'
-    url_expected = '/k-fet/accounts/groups'
+    def setUp(self):
+        super().setUp()
+        self.group1 = Group.objects.create(name='K-Fêt - Group1')
+        self.group2 = Group.objects.create(name='K-Fêt - Group2')
 
     def test_ok(self):
         r = self.client.get(self.url)
@@ -325,51 +376,1893 @@ class AccountGroupListViewTests(BaseAccountGroupViewTests, TestCase):
 
         self.assertQuerysetEqual(
             r.context['groups'],
-            Group.objects.filter(name__icontains='K-Fêt'),
+            map(repr, [self.group1, self.group2]),
             ordered=False,
         )
 
 
-class AccountGroupCreateViewTests(BaseAccountGroupViewTests, TestCase):
+class AccountGroupCreateViewTests(ViewTestCaseMixin, TestCase):
     url_name = 'kfet.account.group.create'
     url_expected = '/k-fet/accounts/groups/new'
 
-    def test_ok(self):
-        r = self.client.get(self.url)
-        self.assertEqual(r.status_code, 200)
+    http_methods = ['GET', 'POST']
 
+    auth_user = 'team1'
+    auth_forbidden = [None, 'user', 'team']
 
-class AccountGroupUpdateViewTests(BaseAccountGroupViewTests, TestCase):
-    url_name = 'kfet.account.group.update'
-    url_kwargs = {'pk': 42}
-    url_expected = '/k-fet/accounts/groups/42/edit'
+    @property
+    def users_extra(self):
+        return {
+            'team1': create_team('team1', '101', perms=['kfet.manage_perms']),
+        }
+
+    @property
+    def post_data(self):
+        return {
+            'name': 'The Group',
+            'permissions': [
+                str(self.perms['kfet.is_team'].pk),
+                str(self.perms['kfet.manage_perms'].pk),
+            ],
+        }
 
     def setUp(self):
         super().setUp()
-        self.group1 = Group.objects.create(pk=42, name='K-Fêt - Group')
-        self.group1.permissions = [
-            Permission.objects.get(
-                content_type__app_label='kfet',
-                codename='is_team',
-            )
-        ]
+        self.perms = get_perms(
+            'kfet.is_team',
+            'kfet.manage_perms',
+        )
 
     def test_get_ok(self):
         r = self.client.get(self.url)
         self.assertEqual(r.status_code, 200)
 
     def test_post_ok(self):
-        post_data = {
-            'name': 'Group42',
-            'permissions': (
-                self.group1.permissions
-                .values_list('pk', flat=True)
-            ),
-        }
-
-        r = self.client.post(self.url, post_data)
-
+        r = self.client.post(self.url, self.post_data)
         self.assertRedirects(r, reverse('kfet.account.group'))
 
-        self.group1.refresh_from_db()
-        self.assertEqual(self.group1.name, 'K-Fêt Group42')
+        group = Group.objects.get(name='K-Fêt The Group')
+
+        self.assertQuerysetEqual(
+            group.permissions.all(),
+            map(repr, [
+                self.perms['kfet.is_team'],
+                self.perms['kfet.manage_perms'],
+            ]),
+            ordered=False,
+        )
+
+
+class AccountGroupUpdateViewTests(ViewTestCaseMixin, TestCase):
+    url_name = 'kfet.account.group.update'
+
+    http_methods = ['GET', 'POST']
+
+    auth_user = 'team1'
+    auth_forbidden = [None, 'user', 'team']
+
+    @property
+    def url_kwargs(self):
+        return {'pk': self.group.pk}
+
+    @property
+    def url_expected(self):
+        return '/k-fet/accounts/groups/{}/edit'.format(self.group.pk)
+
+    @property
+    def users_extra(self):
+        return {
+            'team1': create_team('team1', '101', perms=['kfet.manage_perms']),
+        }
+
+    @property
+    def post_data(self):
+        return {
+            'name': 'The Group',
+            'permissions': [
+                str(self.perms['kfet.is_team'].pk),
+                str(self.perms['kfet.manage_perms'].pk),
+            ],
+        }
+
+    def setUp(self):
+        super().setUp()
+        self.perms = get_perms(
+            'kfet.is_team',
+            'kfet.manage_perms',
+        )
+        self.group = Group.objects.create(name='K-Fêt - Group')
+        self.group.permissions = self.perms.values()
+
+    def test_get_ok(self):
+        r = self.client.get(self.url)
+        self.assertEqual(r.status_code, 200)
+
+    def test_post_ok(self):
+        r = self.client.post(self.url, self.post_data)
+        self.assertRedirects(r, reverse('kfet.account.group'))
+
+        self.group.refresh_from_db()
+
+        self.assertEqual(self.group.name, 'K-Fêt The Group')
+        self.assertQuerysetEqual(
+            self.group.permissions.all(),
+            map(repr, [
+                self.perms['kfet.is_team'],
+                self.perms['kfet.manage_perms'],
+            ]),
+            ordered=False,
+        )
+
+
+class AccountNegativeListViewTests(ViewTestCaseMixin, TestCase):
+    url_name = 'kfet.account.negative'
+    url_expected = '/k-fet/accounts/negatives'
+
+    auth_user = 'team1'
+    auth_forbidden = [None, 'user', 'team']
+
+    @property
+    def users_extra(self):
+        return {
+            'team1': create_team('team1', '101', perms=['kfet.view_negs']),
+        }
+
+    def setUp(self):
+        super().setUp()
+        account = self.accounts['user']
+        account.balance = -5
+        account.save()
+        account.update_negative()
+
+    def test_ok(self):
+        r = self.client.get(self.url)
+        self.assertEqual(r.status_code, 200)
+        self.assertQuerysetEqual(
+            r.context['negatives'],
+            map(repr, [self.accounts['user'].negative]),
+            ordered=False,
+        )
+
+
+class AccountStatOperationListViewTests(ViewTestCaseMixin, TestCase):
+    url_name = 'kfet.account.stat.operation.list'
+    url_kwargs = {'trigramme': '001'}
+    url_expected = '/k-fet/accounts/001/stat/operations/list'
+
+    auth_user = 'user1'
+    auth_forbidden = [None, 'user', 'team']
+
+    @property
+    def users_extra(self):
+        return {'user1': create_user('user1', '001')}
+
+    def test_ok(self):
+        r = self.client.get(self.url)
+        self.assertEqual(r.status_code, 200)
+
+        content = json.loads(r.content.decode('utf-8'))
+
+        base_url = reverse('kfet.account.stat.operation', args=['001'])
+
+        expected_stats = [{
+            'label': 'Derniers mois',
+            'url': {
+                'path': base_url,
+                'query': {
+                    'scale_n_steps': ['7'],
+                    'scale_name': ['month'],
+                    'types': ["['purchase']"],
+                    'scale_last': ['True'],
+                },
+            },
+        }, {
+            'label': 'Dernières semaines',
+            'url': {
+                'path': base_url,
+                'query': {
+                    'scale_n_steps': ['7'],
+                    'scale_name': ['week'],
+                    'types': ["['purchase']"],
+                    'scale_last': ['True'],
+                },
+            },
+        }, {
+            'label': 'Derniers jours',
+            'url': {
+                'path': base_url,
+                'query': {
+                    'scale_n_steps': ['7'],
+                    'scale_name': ['day'],
+                    'types': ["['purchase']"],
+                    'scale_last': ['True'],
+                },
+            },
+        }]
+
+        for stat, expected in zip(content['stats'], expected_stats):
+            expected_url = expected.pop('url')
+            self.assertUrlsEqual(stat['url'], expected_url)
+            self.assertDictContainsSubset(expected, stat)
+
+
+class AccountStatOperationViewTests(ViewTestCaseMixin, TestCase):
+    url_name = 'kfet.account.stat.operation'
+    url_kwargs = {'trigramme': '001'}
+    url_expected = '/k-fet/accounts/001/stat/operations'
+
+    auth_user = 'user1'
+    auth_forbidden = [None, 'user', 'team']
+
+    @property
+    def users_extra(self):
+        return {'user1': create_user('user1', '001')}
+
+    def test_ok(self):
+        r = self.client.get(self.url)
+        self.assertEqual(r.status_code, 200)
+
+
+class AccountStatBalanceListViewTests(ViewTestCaseMixin, TestCase):
+    url_name = 'kfet.account.stat.balance.list'
+    url_kwargs = {'trigramme': '001'}
+    url_expected = '/k-fet/accounts/001/stat/balance/list'
+
+    auth_user = 'user1'
+    auth_forbidden = [None, 'user', 'team']
+
+    @property
+    def users_extra(self):
+        return {'user1': create_user('user1', '001')}
+
+    def test_ok(self):
+        r = self.client.get(self.url)
+        self.assertEqual(r.status_code, 200)
+
+        content = json.loads(r.content.decode('utf-8'))
+
+        base_url = reverse('kfet.account.stat.balance', args=['001'])
+
+        expected_stats = [{
+            'label': 'Tout le temps',
+            'url': base_url,
+        }, {
+            'label': '1 an',
+            'url': {
+                'path': base_url,
+                'query': {'last_days': ['365']},
+            },
+        }, {
+            'label': '6 mois',
+            'url': {
+                'path': base_url,
+                'query': {'last_days': ['183']},
+            },
+        }, {
+            'label': '3 mois',
+            'url': {
+                'path': base_url,
+                'query': {'last_days': ['90']},
+            },
+        }, {
+            'label': '30 jours',
+            'url': {
+                'path': base_url,
+                'query': {'last_days': ['30']},
+            },
+        }]
+
+        for stat, expected in zip(content['stats'], expected_stats):
+            expected_url = expected.pop('url')
+            self.assertUrlsEqual(stat['url'], expected_url)
+            self.assertDictContainsSubset(expected, stat)
+
+
+class AccountStatBalanceViewTests(ViewTestCaseMixin, TestCase):
+    url_name = 'kfet.account.stat.balance'
+    url_kwargs = {'trigramme': '001'}
+    url_expected = '/k-fet/accounts/001/stat/balance'
+
+    auth_user = 'user1'
+    auth_forbidden = [None, 'user', 'team']
+
+    @property
+    def users_extra(self):
+        return {'user1': create_user('user1', '001')}
+
+    def test_ok(self):
+        r = self.client.get(self.url)
+        self.assertEqual(r.status_code, 200)
+
+
+class CheckoutListViewTests(ViewTestCaseMixin, TestCase):
+    url_name = 'kfet.checkout'
+    url_expected = '/k-fet/checkouts/'
+
+    auth_user = 'team'
+    auth_forbidden = [None, 'user']
+
+    def setUp(self):
+        super().setUp()
+        self.checkout1 = Checkout.objects.create(
+            name='Checkout 1',
+            created_by=self.accounts['team'],
+            valid_from=self.now,
+            valid_to=self.now + timedelta(days=5),
+        )
+        self.checkout2 = Checkout.objects.create(
+            name='Checkout 2',
+            created_by=self.accounts['team'],
+            valid_from=self.now + timedelta(days=10),
+            valid_to=self.now + timedelta(days=15),
+        )
+
+    def test_ok(self):
+        r = self.client.get(self.url)
+        self.assertEqual(r.status_code, 200)
+        self.assertQuerysetEqual(
+            r.context['checkouts'],
+            map(repr, [self.checkout1, self.checkout2]),
+            ordered=False,
+        )
+
+
+class CheckoutCreateViewTests(ViewTestCaseMixin, TestCase):
+    url_name = 'kfet.checkout.create'
+    url_expected = '/k-fet/checkouts/new'
+
+    http_methods = ['GET', 'POST']
+
+    auth_user = 'team'
+    auth_forbidden = [None, 'user']
+
+    post_data = {
+        'name': 'Checkout',
+        'valid_from': '2017-10-08 17:45:00',
+        'valid_to': '2017-11-08 16:00:00',
+        'balance': '3.14',
+        # 'is_protected': not checked
+    }
+
+    @property
+    def users_extra(self):
+        return {
+            'team1': create_team('team1', '101', perms=['kfet.add_checkout']),
+        }
+
+    def test_get_ok(self):
+        r = self.client.get(self.url)
+        self.assertEqual(r.status_code, 200)
+
+    def test_post_ok(self):
+        client = Client()
+        client.login(username='team1', password='team1')
+
+        r = client.post(self.url, self.post_data)
+
+        checkout = Checkout.objects.get(name='Checkout')
+        self.assertRedirects(r, checkout.get_absolute_url())
+
+        self.assertInstanceExpected(checkout, {
+            'name': 'Checkout',
+            'valid_from': timezone.make_aware(datetime(2017, 10, 8, 17, 45)),
+            'valid_to': timezone.make_aware(datetime(2017, 11, 8, 16, 00)),
+            'balance': Decimal('3.14'),
+            'is_protected': False,
+        })
+
+    def test_post_forbidden(self):
+        r = self.client.post(self.url, self.post_data)
+        self.assertForbiddenKfet(r)
+
+
+class CheckoutReadViewTests(ViewTestCaseMixin, TestCase):
+    url_name = 'kfet.checkout.read'
+
+    auth_user = 'team'
+    auth_forbidden = [None, 'user']
+
+    @property
+    def url_kwargs(self):
+        return {'pk': self.checkout.pk}
+
+    @property
+    def url_expected(self):
+        return '/k-fet/checkouts/{}'.format(self.checkout.pk)
+
+    def setUp(self):
+        super().setUp()
+        self.checkout = Checkout.objects.create(
+            name='Checkout',
+            created_by=self.accounts['team'],
+            valid_from=self.now,
+            valid_to=self.now + timedelta(days=5),
+        )
+
+    def test_ok(self):
+        r = self.client.get(self.url)
+        self.assertEqual(r.status_code, 200)
+        self.assertEqual(r.context['checkout'], self.checkout)
+
+
+class CheckoutUpdateViewTests(ViewTestCaseMixin, TestCase):
+    url_name = 'kfet.checkout.update'
+
+    http_methods = ['GET', 'POST']
+
+    auth_user = 'team'
+    auth_forbidden = [None, 'user']
+
+    post_data = {
+        'name': 'Checkout updated',
+        'valid_from': '2018-01-01 08:00:00',
+        'valid_to': '2018-07-01 16:00:00',
+    }
+
+    @property
+    def url_kwargs(self):
+        return {'pk': self.checkout.pk}
+
+    @property
+    def url_expected(self):
+        return '/k-fet/checkouts/{}/edit'.format(self.checkout.pk)
+
+    @property
+    def users_extra(self):
+        return {
+            'team1': create_team('team1', '101', perms=[
+                'kfet.change_checkout',
+            ]),
+        }
+
+    def setUp(self):
+        super().setUp()
+        self.checkout = Checkout.objects.create(
+            name='Checkout',
+            valid_from=self.now,
+            valid_to=self.now + timedelta(days=5),
+            balance='3.14',
+            is_protected=False,
+            created_by=self.accounts['team'],
+        )
+
+    def test_get_ok(self):
+        r = self.client.get(self.url)
+        self.assertEqual(r.status_code, 200)
+
+    def test_post_ok(self):
+        client = Client()
+        client.login(username='team1', password='team1')
+
+        r = client.post(self.url, self.post_data)
+        self.assertRedirects(r, self.checkout.get_absolute_url())
+
+        self.checkout.refresh_from_db()
+
+        self.assertInstanceExpected(self.checkout, {
+            'name': 'Checkout updated',
+            'valid_from': timezone.make_aware(datetime(2018, 1, 1, 8, 0, 0)),
+            'valid_to': timezone.make_aware(datetime(2018, 7, 1, 16, 0, 0)),
+        })
+
+    def test_post_forbidden(self):
+        r = self.client.post(self.url, self.post_data)
+        self.assertForbiddenKfet(r)
+
+
+class CheckoutStatementListViewTests(ViewTestCaseMixin, TestCase):
+    url_name = 'kfet.checkoutstatement'
+    url_expected = '/k-fet/checkouts/statements/'
+
+    auth_user = 'team'
+    auth_forbidden = [None, 'user']
+
+    def setUp(self):
+        super().setUp()
+        self.checkout1 = Checkout.objects.create(
+            created_by=self.accounts['team'],
+            name='Checkout 1',
+            valid_from=self.now,
+            valid_to=self.now + timedelta(days=5),
+        )
+        self.checkout2 = Checkout.objects.create(
+            created_by=self.accounts['team'],
+            name='Checkout 2',
+            valid_from=self.now + timedelta(days=10),
+            valid_to=self.now + timedelta(days=15),
+        )
+        self.statement1 = CheckoutStatement.objects.create(
+            checkout=self.checkout1,
+            by=self.accounts['team'],
+            balance_old=5,
+            balance_new=0,
+            amount_taken=5,
+        )
+
+    def test_ok(self):
+        r = self.client.get(self.url)
+        self.assertEqual(r.status_code, 200)
+
+        expected_statements = (
+            list(self.checkout1.statements.all()) +
+            list(self.checkout2.statements.all())
+        )
+
+        self.assertQuerysetEqual(
+            r.context['checkoutstatements'],
+            map(repr, expected_statements),
+        )
+
+
+class CheckoutStatementCreateViewTests(ViewTestCaseMixin, TestCase):
+    url_name = 'kfet.checkoutstatement.create'
+
+    http_methods = ['GET', 'POST']
+
+    auth_user = 'team'
+    auth_forbidden = [None, 'user']
+
+    post_data = {
+        # Let
+        'balance_001': 0, 'balance_002': 0, 'balance_005': 0,
+        'balance_01': 0, 'balance_02': 0, 'balance_05': 0,
+        'balance_1': 1, 'balance_2': 0, 'balance_5': 0,
+        'balance_10': 1, 'balance_20': 0, 'balance_50': 0,
+        'balance_100': 1, 'balance_200': 0, 'balance_500': 0,
+        # Taken
+        'taken_001': 0, 'taken_002': 0, 'taken_005': 0,
+        'taken_01': 0, 'taken_02': 0, 'taken_05': 0,
+        'taken_1': 2, 'taken_2': 0, 'taken_5': 0,
+        'taken_10': 2, 'taken_20': 0, 'taken_50': 0,
+        'taken_100': 2, 'taken_200': 0, 'taken_500': 0,
+        'taken_cheque': 0,
+        # 'not_count': not checked
+    }
+
+    @property
+    def url_kwargs(self):
+        return {'pk_checkout': self.checkout.pk}
+
+    @property
+    def url_expected(self):
+        return '/k-fet/checkouts/{}/statements/add'.format(self.checkout.pk)
+
+    @property
+    def users_extra(self):
+        return {
+            'team1': create_team('team1', '001', perms=[
+                'kfet.add_checkoutstatement',
+            ]),
+        }
+
+    def setUp(self):
+        super().setUp()
+        self.checkout = Checkout.objects.create(
+            name='Checkout',
+            created_by=self.accounts['team'],
+            balance=5,
+            valid_from=self.now,
+            valid_to=self.now + timedelta(days=5),
+        )
+
+    def test_get_ok(self):
+        r = self.client.get(self.url)
+        self.assertEqual(r.status_code, 200)
+
+    @mock.patch('django.utils.timezone.now')
+    def test_post_ok(self, mock_now):
+        self.now += timedelta(days=2)
+        mock_now.return_value = self.now
+
+        client = Client()
+        client.login(username='team1', password='team1')
+
+        r = client.post(self.url, self.post_data)
+        self.assertRedirects(r, self.checkout.get_absolute_url())
+
+        statement = CheckoutStatement.objects.get(at=self.now)
+
+        self.assertInstanceExpected(statement, {
+            'by': self.accounts['team1'],
+            'checkout': self.checkout,
+            'balance_old': Decimal('5'),
+            'balance_new': Decimal('111'),
+            'amount_taken': Decimal('222'),
+            'amount_error': Decimal('328'),
+            'at': self.now,
+            'not_count': False,
+        })
+
+    def test_post_forbidden(self):
+        r = self.client.post(self.url, self.post_data)
+        self.assertForbiddenKfet(r)
+
+
+class CheckoutStatementUpdateViewTests(ViewTestCaseMixin, TestCase):
+    url_name = 'kfet.checkoutstatement.update'
+
+    http_methods = ['GET', 'POST']
+
+    auth_user = 'team'
+    auth_forbidden = [None, 'user']
+
+    post_data = {
+        'amount_taken': 3,
+        'amount_error': 2,
+        'balance_old': 8,
+        'balance_new': 5,
+        # Taken
+        'taken_001': 0, 'taken_002': 0, 'taken_005': 0,
+        'taken_01': 0, 'taken_02': 0, 'taken_05': 0,
+        'taken_1': 1, 'taken_2': 1, 'taken_5': 0,
+        'taken_10': 0, 'taken_20': 0, 'taken_50': 0,
+        'taken_100': 0, 'taken_200': 0, 'taken_500': 0,
+        'taken_cheque': 0,
+    }
+
+    @property
+    def url_kwargs(self):
+        return {
+            'pk_checkout': self.checkout.pk,
+            'pk': self.statement.pk,
+        }
+
+    @property
+    def url_expected(self):
+        return '/k-fet/checkouts/{pk_checkout}/statements/{pk}/edit'.format(
+            pk_checkout=self.checkout.pk,
+            pk=self.statement.pk,
+        )
+
+    @property
+    def users_extra(self):
+        return {
+            'team1': create_team('team1', '101', perms=[
+                'kfet.change_checkoutstatement',
+            ]),
+        }
+
+    def setUp(self):
+        super().setUp()
+        self.checkout = Checkout.objects.create(
+            name='Checkout',
+            created_by=self.accounts['team'],
+            balance=5,
+            valid_from=self.now,
+            valid_to=self.now + timedelta(days=5),
+        )
+        self.statement = CheckoutStatement.objects.create(
+            by=self.accounts['team'],
+            checkout=self.checkout,
+            balance_new=5,
+            balance_old=8,
+            amount_error=2,
+            amount_taken=5,
+        )
+
+    def test_get_ok(self):
+        r = self.client.get(self.url)
+        self.assertEqual(r.status_code, 200)
+
+    @mock.patch('django.utils.timezone.now')
+    def test_post_ok(self, mock_now):
+        self.now += timedelta(days=2)
+        mock_now.return_value = self.now
+
+        client = Client()
+        client.login(username='team1', password='team1')
+
+        r = client.post(self.url, self.post_data)
+        self.assertRedirects(r, self.checkout.get_absolute_url())
+
+        self.statement.refresh_from_db()
+
+        self.assertInstanceExpected(self.statement, {
+            'taken_1': 1,
+            'taken_2': 1,
+            'balance_new': 5,
+            'balance_old': 8,
+            'amount_error': 0,
+            'amount_taken': 3,
+        })
+
+    def test_post_forbidden(self):
+        r = self.client.post(self.url, self.post_data)
+        self.assertForbiddenKfet(r)
+
+
+class ArticleCategoryListViewTests(ViewTestCaseMixin, TestCase):
+    url_name = 'kfet.category'
+    url_expected = '/k-fet/categories/'
+
+    auth_user = 'team'
+    auth_forbidden = [None, 'user']
+
+    def setUp(self):
+        super().setUp()
+        self.category1 = ArticleCategory.objects.create(name='Category 1')
+        self.category2 = ArticleCategory.objects.create(name='Category 2')
+
+    def test_ok(self):
+        r = self.client.get(self.url)
+        self.assertEqual(r.status_code, 200)
+
+        self.assertQuerysetEqual(
+            r.context['categories'],
+            map(repr, [self.category1, self.category2]),
+        )
+
+
+class ArticleCategoryUpdateViewTests(ViewTestCaseMixin, TestCase):
+    url_name = 'kfet.category.update'
+
+    http_methods = ['GET', 'POST']
+
+    auth_user = 'team'
+    auth_forbidden = [None, 'user']
+
+    @property
+    def url_kwargs(self):
+        return {'pk': self.category.pk}
+
+    @property
+    def url_expected(self):
+        return '/k-fet/categories/{}/edit'.format(self.category.pk)
+
+    @property
+    def users_extra(self):
+        return {
+            'team1': create_team('team1', '101', perms=[
+                'kfet.change_articlecategory',
+            ]),
+        }
+
+    @property
+    def post_data(self):
+        return {
+            'name': 'The Category',
+            # 'has_addcost': not checked
+        }
+
+    def setUp(self):
+        super().setUp()
+        self.category = ArticleCategory.objects.create(name='Category')
+
+    def test_get_ok(self):
+        r = self.client.get(self.url)
+        self.assertEqual(r.status_code, 200)
+
+    def test_post_ok(self):
+        client = Client()
+        client.login(username='team1', password='team1')
+
+        r = client.post(self.url, self.post_data)
+        self.assertRedirects(r, reverse('kfet.category'))
+
+        self.category.refresh_from_db()
+
+        self.assertInstanceExpected(self.category, {
+            'name': 'The Category',
+            'has_addcost': False,
+        })
+
+    def test_post_forbidden(self):
+        r = self.client.post(self.url, self.post_data)
+        self.assertForbiddenKfet(r)
+
+
+class ArticleListViewTests(ViewTestCaseMixin, TestCase):
+    url_name = 'kfet.article'
+    url_expected = '/k-fet/articles/'
+
+    auth_user = 'team'
+    auth_forbidden = [None, 'user']
+
+    def setUp(self):
+        super().setUp()
+        category = ArticleCategory.objects.create(name='Category')
+        self.article1 = Article.objects.create(
+            name='Article 1',
+            category=category,
+        )
+        self.article2 = Article.objects.create(
+            name='Article 2',
+            category=category,
+        )
+
+    def test_ok(self):
+        r = self.client.get(self.url)
+        self.assertEqual(r.status_code, 200)
+        self.assertQuerysetEqual(
+            r.context['articles'],
+            map(repr, [self.article1, self.article2]),
+        )
+
+
+class ArticleCreateViewTests(ViewTestCaseMixin, TestCase):
+    url_name = 'kfet.article.create'
+    url_expected = '/k-fet/articles/new'
+
+    http_methods = ['GET', 'POST']
+
+    auth_user = 'team'
+    auth_forbidden = [None, 'user']
+
+    @property
+    def users_extra(self):
+        return {
+            'team1': create_team('team1', '101', perms=['kfet.add_article']),
+        }
+
+    @property
+    def post_data(self):
+        return {
+            'name': 'Article',
+            'category': self.category.pk,
+            'stock': 5,
+            'price': '2.5',
+        }
+
+    def setUp(self):
+        super().setUp()
+        self.category = ArticleCategory.objects.create(name='Category')
+
+    def test_get_ok(self):
+        r = self.client.get(self.url)
+        self.assertEqual(r.status_code, 200)
+
+    def test_post_ok(self):
+        client = Client()
+        client.login(username='team1', password='team1')
+
+        r = client.post(self.url, self.post_data)
+
+        article = Article.objects.get(name='Article')
+
+        self.assertRedirects(r, article.get_absolute_url())
+
+        self.assertInstanceExpected(article, {
+            'name': 'Article',
+            'category': self.category,
+        })
+
+    def test_post_forbidden(self):
+        r = self.client.post(self.url, self.post_data)
+        self.assertForbiddenKfet(r)
+
+
+class ArticleReadViewTests(ViewTestCaseMixin, TestCase):
+    url_name = 'kfet.article.read'
+
+    auth_user = 'team'
+    auth_forbidden = [None, 'user']
+
+    @property
+    def url_kwargs(self):
+        return {'pk': self.article.pk}
+
+    @property
+    def url_expected(self):
+        return '/k-fet/articles/{}'.format(self.article.pk)
+
+    def setUp(self):
+        super().setUp()
+        self.article = Article.objects.create(
+            name='Article',
+            category=ArticleCategory.objects.create(name='Category'),
+            stock=5,
+            price=Decimal('2.5'),
+        )
+
+    def test_ok(self):
+        r = self.client.get(self.url)
+        self.assertEqual(r.status_code, 200)
+        self.assertEqual(r.context['article'], self.article)
+
+
+class ArticleUpdateViewTests(ViewTestCaseMixin, TestCase):
+    url_name = 'kfet.article.update'
+
+    http_methods = ['GET', 'POST']
+
+    auth_user = 'team'
+    auth_forbidden = [None, 'user']
+
+    @property
+    def url_kwargs(self):
+        return {'pk': self.article.pk}
+
+    @property
+    def url_expected(self):
+        return '/k-fet/articles/{}/edit'.format(self.article.pk)
+
+    @property
+    def users_extra(self):
+        return {
+            'team1': create_team('team1', '101', perms=[
+                'kfet.change_article',
+            ]),
+        }
+
+    @property
+    def post_data(self):
+        return {
+            'name': 'The Article',
+            'category': self.article.category.pk,
+            'is_sold': '1',
+            'price': '3.5',
+            'box_type': 'carton',
+            # 'hidden': not checked
+        }
+
+    def setUp(self):
+        super().setUp()
+        self.category = ArticleCategory.objects.create(name='Category')
+        self.article = Article.objects.create(
+            name='Article',
+            category=self.category,
+            stock=5,
+            price=Decimal('2.5'),
+        )
+
+    def test_get_ok(self):
+        r = self.client.get(self.url)
+        self.assertEqual(r.status_code, 200)
+
+    def test_post_ok(self):
+        client = Client()
+        client.login(username='team1', password='team1')
+
+        r = client.post(self.url, self.post_data)
+
+        self.assertRedirects(r, self.article.get_absolute_url())
+
+        self.article.refresh_from_db()
+
+        self.assertInstanceExpected(self.article, {
+            'name': 'The Article',
+            'price': Decimal('3.5'),
+        })
+
+    def test_post_forbidden(self):
+        r = self.client.post(self.url, self.post_data)
+        self.assertForbiddenKfet(r)
+
+
+class ArticleStatSalesListViewTests(ViewTestCaseMixin, TestCase):
+    url_name = 'kfet.article.stat.sales.list'
+
+    auth_user = 'team'
+    auth_forbidden = [None, 'user']
+
+    @property
+    def url_kwargs(self):
+        return {'pk': self.article.pk}
+
+    @property
+    def url_expected(self):
+        return '/k-fet/articles/{}/stat/sales/list'.format(self.article.pk)
+
+    def setUp(self):
+        super().setUp()
+        self.article = Article.objects.create(
+            name='Article',
+            category=ArticleCategory.objects.create(name='Category'),
+        )
+
+    def test_ok(self):
+        r = self.client.get(self.url)
+        self.assertEqual(r.status_code, 200)
+
+        content = json.loads(r.content.decode('utf-8'))
+
+        base_url = reverse('kfet.article.stat.sales', args=[self.article.pk])
+
+        expected_stats = [
+            {
+                'label': 'Derniers mois',
+                'url': {
+                    'path': base_url,
+                    'query': {
+                        'scale_n_steps': ['7'],
+                        'scale_name': ['month'],
+                        'scale_last': ['True'],
+                    },
+                },
+            },
+            {
+                'label': 'Dernières semaines',
+                'url': {
+                    'path': base_url,
+                    'query': {
+                        'scale_n_steps': ['7'],
+                        'scale_name': ['week'],
+                        'scale_last': ['True'],
+                    },
+                },
+            },
+            {
+                'label': 'Derniers jours',
+                'url': {
+                    'path': base_url,
+                    'query': {
+                        'scale_n_steps': ['7'],
+                        'scale_name': ['day'],
+                        'scale_last': ['True'],
+                    },
+                },
+            },
+        ]
+
+        for stat, expected in zip(content['stats'], expected_stats):
+            expected_url = expected.pop('url')
+            self.assertUrlsEqual(stat['url'], expected_url)
+            self.assertDictContainsSubset(expected, stat)
+
+
+class ArticleStatSalesViewTests(ViewTestCaseMixin, TestCase):
+    url_name = 'kfet.article.stat.sales'
+
+    auth_user = 'team'
+    auth_forbidden = [None, 'user']
+
+    @property
+    def url_kwargs(self):
+        return {'pk': self.article.pk}
+
+    @property
+    def url_expected(self):
+        return '/k-fet/articles/{}/stat/sales'.format(self.article.pk)
+
+    def setUp(self):
+        super().setUp()
+        self.article = Article.objects.create(
+            name='Article',
+            category=ArticleCategory.objects.create(name='Category'),
+        )
+
+    def test_ok(self):
+        r = self.client.get(self.url)
+        self.assertEqual(r.status_code, 200)
+
+
+class KPsulViewTests(ViewTestCaseMixin, TestCase):
+    url_name = 'kfet.kpsul'
+    url_expected = '/k-fet/k-psul/'
+
+    auth_user = 'team'
+    auth_forbidden = [None, 'user']
+
+    def test_ok(self):
+        r = self.client.get(self.url)
+        self.assertEqual(r.status_code, 200)
+
+
+class KPsulCheckoutDataViewTests(ViewTestCaseMixin, TestCase):
+    url_name = 'kfet.kpsul.checkout_data'
+    url_expected = '/k-fet/k-psul/checkout_data'
+
+    http_methods = ['POST']
+
+    auth_user = 'team'
+    auth_forbidden = [None, 'user']
+
+    def setUp(self):
+        super().setUp()
+        self.checkout = Checkout.objects.create(
+            name='Checkout',
+            balance=Decimal('10'),
+            created_by=self.accounts['team'],
+            valid_from=self.now,
+            valid_to=self.now + timedelta(days=5),
+        )
+
+    def test_ok(self):
+        r = self.client.post(self.url, {'pk': self.checkout.pk})
+        self.assertEqual(r.status_code, 200)
+
+        content = json.loads(r.content.decode('utf-8'))
+
+        expected = {
+            'name': 'Checkout',
+            'balance': '10.00',
+        }
+
+        self.assertDictContainsSubset(expected, content)
+
+        self.assertSetEqual(set(content.keys()), set([
+            'balance', 'id', 'name', 'valid_from', 'valid_to',
+            'last_statement_at', 'last_statement_balance',
+            'last_statement_by_first_name', 'last_statement_by_last_name',
+            'last_statement_by_trigramme',
+        ]))
+
+
+class KPsulPerformOperationsViewTests(ViewTestCaseMixin, TestCase):
+    url_name = 'kfet.kpsul.perform_operations'
+    url_expected = '/k-fet/k-psul/perform_operations'
+
+    http_methods = ['POST']
+
+    auth_user = 'team'
+    auth_forbidden = [None, 'user']
+
+    def test_ok(self):
+        pass
+
+
+class KPsulCancelOperationsViewTests(ViewTestCaseMixin, TestCase):
+    url_name = 'kfet.kpsul.cancel_operations'
+    url_expected = '/k-fet/k-psul/cancel_operations'
+
+    http_methods = ['POST']
+
+    auth_user = 'team'
+    auth_forbidden = [None, 'user']
+
+    def test_ok(self):
+        pass
+
+
+class KPsulArticlesData(ViewTestCaseMixin, TestCase):
+    url_name = 'kfet.kpsul.articles_data'
+    url_expected = '/k-fet/k-psul/articles_data'
+
+    auth_user = 'team'
+    auth_forbidden = [None, 'user']
+
+    def setUp(self):
+        super().setUp()
+        category = ArticleCategory.objects.create(name='Catégorie')
+        self.article1 = Article.objects.create(
+            category=category,
+            name='Article 1',
+        )
+        self.article2 = Article.objects.create(
+            category=category,
+            name='Article 2',
+            price=Decimal('2.5'),
+        )
+
+    def test_ok(self):
+        r = self.client.get(self.url)
+        self.assertEqual(r.status_code, 200)
+
+        content = json.loads(r.content.decode('utf-8'))
+
+        articles = content['articles']
+
+        expected_list = [{
+            'category__name': 'Catégorie',
+            'name': 'Article 1',
+            'price': '0.00',
+        }, {
+            'category__name': 'Catégorie',
+            'name': 'Article 2',
+            'price': '2.50',
+        }]
+
+        for expected, article in zip(expected_list, articles):
+            self.assertDictContainsSubset(expected, article)
+            self.assertSetEqual(set(article.keys()), set([
+                'id', 'name', 'price', 'stock',
+                'category_id', 'category__name', 'category__has_addcost',
+            ]))
+
+
+class KPsulUpdateAddcost(ViewTestCaseMixin, TestCase):
+    url_name = 'kfet.kpsul.update_addcost'
+    url_expected = '/k-fet/k-psul/update_addcost'
+
+    http_methods = ['POST']
+
+    auth_user = 'team'
+    auth_forbidden = [None, 'user']
+
+    post_data = {
+        'trigramme': '000',
+        'amount': '0.5',
+    }
+
+    @property
+    def users_extra(self):
+        return {
+            'team1': create_team('team1', '101', perms=[
+                'kfet.manage_addcosts',
+            ]),
+        }
+
+    def test_ok(self):
+        client = Client()
+        client.login(username='team1', password='team1')
+
+        r = client.post(self.url, self.post_data)
+        self.assertEqual(r.status_code, 200)
+
+        self.assertEqual(
+            kfet_config.addcost_for,
+            Account.objects.get(trigramme='000'),
+        )
+        self.assertEqual(kfet_config.addcost_amount, Decimal('0.5'))
+
+    def test_post_forbidden(self):
+        r = self.client.post(self.url, self.post_data)
+        self.assertForbidden(r)
+
+
+class KPsulGetSettings(ViewTestCaseMixin, TestCase):
+    url_name = 'kfet.kpsul.get_settings'
+    url_expected = '/k-fet/k-psul/get_settings'
+
+    auth_user = 'team'
+    auth_forbidden = [None, 'user']
+
+    def test_ok(self):
+        r = self.client.get(self.url)
+        self.assertEqual(r.status_code, 200)
+
+
+class HistoryJSONViewTests(ViewTestCaseMixin, TestCase):
+    url_name = 'kfet.history.json'
+    url_expected = '/k-fet/history.json'
+
+    auth_user = 'user'
+    auth_forbidden = [None]
+
+    def test_ok(self):
+        r = self.client.post(self.url)
+        self.assertEqual(r.status_code, 200)
+
+
+class AccountReadJSONViewTests(ViewTestCaseMixin, TestCase):
+    url_name = 'kfet.account.read.json'
+    url_expected = '/k-fet/accounts/read.json'
+
+    http_methods = ['POST']
+
+    auth_user = 'team'
+    auth_forbidden = [None, 'user']
+
+    def test_ok(self):
+        r = self.client.post(self.url, {'trigramme': '000'})
+        self.assertEqual(r.status_code, 200)
+
+        content = json.loads(r.content.decode('utf-8'))
+
+        expected = {
+            'name': 'first last',
+            'trigramme': '000',
+            'balance': '0.00',
+        }
+        self.assertDictContainsSubset(expected, content)
+
+        self.assertSetEqual(set(content.keys()), set([
+            'balance', 'departement', 'email', 'id', 'is_cof', 'is_frozen',
+            'name', 'nickname', 'promo', 'trigramme',
+        ]))
+
+
+class SettingsListViewTests(ViewTestCaseMixin, TestCase):
+    url_name = 'kfet.settings'
+    url_expected = '/k-fet/settings/'
+
+    auth_user = 'team1'
+    auth_forbidden = [None, 'user', 'team']
+
+    @property
+    def users_extra(self):
+        return {
+            'team1': create_team('team1', '101', perms=[
+                'kfet.change_settings',
+            ]),
+        }
+
+    def test_ok(self):
+        r = self.client.get(self.url)
+        self.assertEqual(r.status_code, 200)
+
+
+class SettingsUpdateViewTests(ViewTestCaseMixin, TestCase):
+    url_name = 'kfet.settings.update'
+    url_expected = '/k-fet/settings/edit'
+
+    http_methods = ['GET', 'POST']
+
+    auth_user = 'team1'
+    auth_forbidden = [None, 'user', 'team']
+
+    @property
+    def post_data(self):
+        return {
+            'kfet_reduction_cof': '25',
+            'kfet_addcost_amount': '0.5',
+            'kfet_addcost_for': self.accounts['user'].pk,
+            'kfet_overdraft_duration': '2 00:00:00',
+            'kfet_overdraft_amount': '25',
+            'kfet_cancel_duration': '00:20:00',
+        }
+
+    @property
+    def users_extra(self):
+        return {
+            'team1': create_team('team1', '101', perms=[
+                'kfet.change_settings',
+            ]),
+        }
+
+    def test_get_ok(self):
+        r = self.client.get(self.url)
+        self.assertequal(r.status_code, 200)
+
+    def test_post_ok(self):
+        r = self.client.post(self.url, self.post_data)
+        self.assertRedirects(r, reverse('kfet.settings'))
+
+        self.assertDictEqual(dict(kfet_config.list()), {
+            'reduction_cof': Decimal('25'),
+            'addcost_amount': Decimal('0.5'),
+            'addcost_for': self.accounts['user'],
+            'overdraft_duration': timedelta(day=2),
+            'overdraft_amount': Decimal('25'),
+            'kfet_cancel_duration': timedelta(minutes=20),
+        })
+
+
+class TransferListViewTests(ViewTestCaseMixin, TestCase):
+    url_name = 'kfet.transfers'
+    url_expected = '/k-fet/transfers/'
+
+    auth_user = 'team'
+    auth_forbidden = [None, 'user']
+
+    def test_ok(self):
+        r = self.client.get(self.url)
+        self.assertEqual(r.status_code, 200)
+
+
+class TransferCreateViewTests(ViewTestCaseMixin, TestCase):
+    url_name = 'kfet.transfers.create'
+    url_expected = '/k-fet/transfers/new'
+
+    auth_user = 'team'
+    auth_forbidden = [None, 'user']
+
+    def test_ok(self):
+        r = self.client.get(self.url)
+        self.assertEqual(r.status_code, 200)
+
+
+class TransferPerformViewTests(ViewTestCaseMixin, TestCase):
+    url_name = 'kfet.transfers.perform'
+    url_expected = '/k-fet/transfers/perform'
+
+    http_methods = ['POST']
+
+    auth_user = 'team1'
+    auth_forbidden = [None, 'user', 'team']
+
+    @property
+    def users_extra(self):
+        return {
+            'team1': create_team('team1', '101', perms=[
+                # Required
+                'kfet.add_transfer',
+                # Convenience
+                'kfet.perform_negative_operations',
+            ]),
+        }
+
+    @property
+    def post_data(self):
+        return {
+            # General
+            'comment': '',
+            # Formset management
+            'form-TOTAL_FORMS': '10',
+            'form-INITIAL_FORMS': '0',
+            'form-MIN_NUM_FORMS': '1',
+            'form-MAX_NUM_FORMS': '1000',
+            # Transfer 1
+            'form-0-from_acc': str(self.accounts['user'].pk),
+            'form-0-to_acc': str(self.accounts['team'].pk),
+            'form-0-amount': '3.5',
+            # Transfer 2
+            'form-1-from_acc': str(self.accounts['team'].pk),
+            'form-1-to_acc': str(self.accounts['team1'].pk),
+            'form-1-amount': '2.4',
+        }
+
+    def test_ok(self):
+        r = self.client.post(self.url, self.post_data)
+        self.assertEqual(r.status_code, 200)
+
+        user = self.accounts['user']
+        user.refresh_from_db()
+        self.assertEqual(user.balance, Decimal('-3.5'))
+
+        team = self.accounts['team']
+        team.refresh_from_db()
+        self.assertEqual(team.balance, Decimal('1.1'))
+
+        team1 = self.accounts['team1']
+        team1.refresh_from_db()
+        self.assertEqual(team1.balance, Decimal('2.4'))
+
+
+class TransferCancelViewTests(ViewTestCaseMixin, TestCase):
+    url_name = 'kfet.transfers.cancel'
+    url_expected = '/k-fet/transfers/cancel'
+
+    http_methods = ['POST']
+
+    auth_user = 'team1'
+    auth_forbidden = [None, 'user', 'team']
+
+    @property
+    def users_extra(self):
+        return {
+            'team1': create_team('team1', '101', perms=[
+                # Convenience
+                'kfet.perform_negative_operations',
+            ]),
+        }
+
+    @property
+    def post_data(self):
+        return {
+            'transfers[]': [self.transfer1.pk, self.transfer2.pk],
+        }
+
+    def setUp(self):
+        super().setUp()
+        group = TransferGroup.objects.create()
+        self.transfer1 = Transfer.objects.create(
+            group=group,
+            from_acc=self.accounts['user'],
+            to_acc=self.accounts['team'],
+            amount='3.5',
+        )
+        self.transfer2 = Transfer.objects.create(
+            group=group,
+            from_acc=self.accounts['team'],
+            to_acc=self.accounts['root'],
+            amount='2.4',
+        )
+
+    def test_ok(self):
+        r = self.client.post(self.url, self.post_data)
+        self.assertEqual(r.status_code, 200)
+
+        user = self.accounts['user']
+        user.refresh_from_db()
+        self.assertEqual(user.balance, Decimal('3.5'))
+
+        team = self.accounts['team']
+        team.refresh_from_db()
+        self.assertEqual(team.balance, Decimal('-1.1'))
+
+        root = self.accounts['root']
+        root.refresh_from_db()
+        self.assertEqual(root.balance, Decimal('-2.4'))
+
+
+class InventoryListViewTests(ViewTestCaseMixin, TestCase):
+    url_name = 'kfet.inventory'
+    url_expected = '/k-fet/inventaires/'
+
+    auth_user = 'team'
+    auth_forbidden = [None, 'user']
+
+    def setUp(self):
+        super().setUp()
+        self.inventory = Inventory.objects.create(
+            by=self.accounts['team'],
+        )
+        category = ArticleCategory.objects.create(name='Category')
+        article = Article.objects.create(
+            name='Article',
+            category=category,
+        )
+        InventoryArticle.objects.create(
+            inventory=self.inventory,
+            article=article,
+            stock_old=5,
+            stock_new=0,
+        )
+
+    def test_ok(self):
+        r = self.client.get(self.url)
+        self.assertEqual(r.status_code, 200)
+
+        inventories = r.context['inventories']
+        self.assertQuerysetEqual(
+            inventories,
+            map(repr, [self.inventory]),
+        )
+
+
+class InventoryCreateViewTests(ViewTestCaseMixin, TestCase):
+    url_name = 'kfet.inventory.create'
+    url_expected = '/k-fet/inventaires/new'
+
+    http_methods = ['GET', 'POST']
+
+    auth_user = 'team'
+    auth_forbidden = [None, 'user']
+
+    @property
+    def users_extra(self):
+        return {
+            'team1': create_team('team1', '101', perms=[
+                'kfet.add_inventory',
+            ]),
+        }
+
+    @property
+    def post_data(self):
+        return {
+            # Formset management
+            'form-TOTAL_FORMS': '2',
+            'form-INITIAL_FORMS': '2',
+            'form-MIN_NUM_FORMS': '0',
+            'form-MAX_NUM_FORMS': '1000',
+            # Article 1
+            'form-0-article': str(self.article1.pk),
+            'form-0-stock_new': '5',
+            # Article 2
+            'form-1-article': str(self.article2.pk),
+            'form-1-stock_new': '10',
+        }
+
+    def setUp(self):
+        super().setUp()
+        category = ArticleCategory.objects.create(name='Category')
+        self.article1 = Article.objects.create(
+            category=category,
+            name='Article 1',
+        )
+        self.article2 = Article.objects.create(
+            category=category,
+            name='Article 2',
+        )
+
+    def test_get_ok(self):
+        r = self.client.get(self.url)
+        self.assertEqual(r.status_code, 200)
+
+    def test_post_ok(self):
+        client = Client()
+        client.login(username='team1', password='team1')
+
+        r = client.post(self.url, self.post_data)
+        self.assertRedirects(r, reverse('kfet.inventory'))
+
+    def test_post_forbidden(self):
+        r = self.client.post(self.url, self.post_data)
+        self.assertForbiddenKfet(r)
+
+
+class InventoryReadViewTests(ViewTestCaseMixin, TestCase):
+    url_name = 'kfet.inventory.read'
+
+    auth_user = 'team'
+    auth_forbidden = [None, 'user']
+
+    @property
+    def url_kwargs(self):
+        return {'pk': self.inventory.pk}
+
+    @property
+    def url_expected(self):
+        return '/k-fet/inventaires/{}'.format(self.inventory.pk)
+
+    def setUp(self):
+        super().setUp()
+        self.inventory = Inventory.objects.create(
+            by=self.accounts['team'],
+        )
+        category = ArticleCategory.objects.create(name='Category')
+        article = Article.objects.create(
+            name='Article',
+            category=category,
+        )
+        InventoryArticle.objects.create(
+            inventory=self.inventory,
+            article=article,
+            stock_old=5,
+            stock_new=0,
+        )
+
+    def test_ok(self):
+        r = self.client.get(self.url)
+        self.assertEqual(r.status_code, 200)
+
+
+class OrderListViewTests(ViewTestCaseMixin, TestCase):
+    url_name = 'kfet.order'
+    url_expected = '/k-fet/orders/'
+
+    auth_user = 'team'
+    auth_forbidden = [None, 'user']
+
+    def setUp(self):
+        super().setUp()
+        category = ArticleCategory.objects.create(name='Category')
+        article = Article.objects.create(name='Article', category=category)
+
+        supplier = Supplier.objects.create(name='Supplier')
+        SupplierArticle.objects.create(supplier=supplier, article=article)
+
+        self.order = Order.objects.create(supplier=supplier)
+        OrderArticle.objects.create(
+            order=self.order,
+            article=article,
+            quantity_ordered=24,
+        )
+
+    def test_ok(self):
+        r = self.client.get(self.url)
+        self.assertEqual(r.status_code, 200)
+
+        orders = r.context['orders']
+        self.assertQuerysetEqual(
+            orders,
+            map(repr, [self.order]),
+        )
+
+
+class OrderReadViewTests(ViewTestCaseMixin, TestCase):
+    url_name = 'kfet.order.read'
+
+    auth_user = 'team'
+    auth_forbidden = [None, 'user']
+
+    @property
+    def url_kwargs(self):
+        return {'pk': self.order.pk}
+
+    @property
+    def url_expected(self):
+        return '/k-fet/orders/{}'.format(self.order.pk)
+
+    def setUp(self):
+        super().setUp()
+        category = ArticleCategory.objects.create(name='Category')
+        article = Article.objects.create(name='Article', category=category)
+
+        supplier = Supplier.objects.create(name='Supplier')
+        SupplierArticle.objects.create(supplier=supplier, article=article)
+
+        self.order = Order.objects.create(supplier=supplier)
+        OrderArticle.objects.create(
+            order=self.order,
+            article=article,
+            quantity_ordered=24,
+        )
+
+    def test_ok(self):
+        r = self.client.get(self.url)
+        self.assertEqual(r.status_code, 200)
+
+
+class SupplierUpdateViewTests(ViewTestCaseMixin, TestCase):
+    url_name = 'kfet.order.supplier.update'
+
+    http_methods = ['GET', 'POST']
+
+    auth_user = 'team'
+    auth_forbidden = [None, 'user']
+
+    @property
+    def url_kwargs(self):
+        return {'pk': self.supplier.pk}
+
+    @property
+    def url_expected(self):
+        return '/k-fet/orders/suppliers/{}/edit'.format(self.supplier.pk)
+
+    @property
+    def users_extra(self):
+        return {
+            'team1': create_team('team1', '101', perms=[
+                'kfet.change_supplier',
+            ]),
+        }
+
+    @property
+    def post_data(self):
+        return {
+            'name': 'The Supplier',
+            'phone': '',
+            'comment': '',
+            'address': '',
+            'email': '',
+        }
+
+    def setUp(self):
+        super().setUp()
+        self.supplier = Supplier.objects.create(name='Supplier')
+
+    def test_get_ok(self):
+        r = self.client.get(self.url)
+        self.assertEqual(r.status_code, 200)
+
+    def test_post_ok(self):
+        client = Client()
+        client.login(username='team1', password='team1')
+
+        r = client.post(self.url, self.post_data)
+        self.assertRedirects(r, reverse('kfet.order'))
+
+        self.supplier.refresh_from_db()
+        self.assertEqual(self.supplier.name, 'The Supplier')
+
+    def test_post_forbidden(self):
+        r = self.client.post(self.url, self.post_data)
+        self.assertForbiddenKfet(r)
+
+
+class OrderCreateViewTests(ViewTestCaseMixin, TestCase):
+    url_name = 'kfet.order.new'
+
+    auth_user = 'team'
+    auth_forbidden = [None, 'user']
+
+    @property
+    def url_kwargs(self):
+        return {'pk': self.supplier.pk}
+
+    @property
+    def url_expected(self):
+        return '/k-fet/orders/suppliers/{}/new-order'.format(self.supplier.pk)
+
+    @property
+    def users_extra(self):
+        return {
+            'team1': create_team('team1', '101', perms=['kfet.add_order']),
+        }
+
+    @property
+    def post_data(self):
+        return {
+            # Formset management
+            'form-TOTAL_FORMS': '1',
+            'form-INITIAL_FORMS': '1',
+            'form-MIN_NUM_FORMS': '0',
+            'form-MAX_NUM_FORMS': '1000',
+            # Article
+            'form-0-article': self.article.pk,
+            'form-0-quantity_ordered': '20',
+        }
+
+    def setUp(self):
+        super().setUp()
+        category = ArticleCategory.objects.create(name='Category')
+        self.article = Article.objects.create(
+            name='Article',
+            category=category,
+        )
+
+        self.supplier = Supplier.objects.create(name='Supplier')
+        SupplierArticle.objects.create(
+            supplier=self.supplier,
+            article=self.article,
+        )
+
+    def test_get_ok(self):
+        r = self.client.get(self.url)
+        self.assertEqual(r.status_code, 200)
+
+    @mock.patch('django.utils.timezone.now')
+    def test_post_ok(self, mock_now):
+        mock_now.return_value = self.now
+
+        client = Client()
+        client.login(username='team1', password='team1')
+
+        r = client.post(self.url, self.post_data)
+
+        order = Order.objects.get(at=self.now)
+
+        self.assertRedirects(r, reverse('kfet.order.read', args=[order.pk]))
+
+    def test_post_forbidden(self):
+        r = self.client.post(self.url, self.post_data)
+        self.assertForbiddenKfet(r)
+
+
+class OrderToInventoryViewTests(ViewTestCaseMixin, TestCase):
+    url_name = 'kfet.order.to_inventory'
+
+    http_methods = ['GET', 'POST']
+
+    auth_user = 'team'
+    auth_forbidden = [None, 'user']
+
+    @property
+    def url_kwargs(self):
+        return {'pk': self.order.pk}
+
+    @property
+    def url_expected(self):
+        return '/k-fet/orders/{}/to_inventory'.format(self.order.pk)
+
+    @property
+    def users_extra(self):
+        return {
+            'team1': create_team('team1', '101', perms=[
+                'kfet.order_to_inventory',
+            ]),
+        }
+
+    @property
+    def post_data(self):
+        return {
+            # Formset mangaement
+            'form-TOTAL_FORMS': '1',
+            'form-INITIAL_FORMS': '1',
+            'form-MIN_NUM_FORMS': '0',
+            'form-MAX_NUM_FORMS': '1000',
+            # Article 1
+            'form-0-article': self.article.pk,
+            'form-0-quantity_received': '20',
+            'form-0-price_HT': '',
+            'form-0-TVA': '',
+            'form-0-rights': '',
+        }
+
+    def setUp(self):
+        super().setUp()
+        category = ArticleCategory.objects.create(name='Category')
+        self.article = Article.objects.create(
+            name='Article',
+            category=category,
+        )
+
+        supplier = Supplier.objects.create(name='Supplier')
+        SupplierArticle.objects.create(supplier=supplier, article=self.article)
+
+        self.order = Order.objects.create(supplier=supplier)
+        OrderArticle.objects.create(
+            order=self.order,
+            article=self.article,
+            quantity_ordered=24,
+        )
+
+    def test_get_ok(self):
+        r = self.client.get(self.url)
+        self.assertEqual(r.status_code, 200)
+
+    @mock.patch('django.utils.timezone.now')
+    def test_post_ok(self, mock_now):
+        mock_now.return_value = self.now
+
+        client = Client()
+        client.login(username='team1', password='team1')
+
+        r = client.post(self.url, self.post_data)
+        self.assertRedirects(r, reverse('kfet.order'))
+
+        inventory = Inventory.objects.first()
+
+        self.assertInstanceExpected(inventory, {
+            'by': self.accounts['team1'],
+            'at': self.now,
+            'order': self.order,
+        })
+        self.assertQuerysetEqual(
+            inventory.articles.all(),
+            map(repr, [self.article]),
+        )
+
+        compte = InventoryArticle.objects.get(article=self.article)
+
+        self.assertInstanceExpected(compte, {
+            'stock_old': 0,
+            'stock_new': 20,
+            'stock_error': 0,
+        })
+
+    def test_post_forbidden(self):
+        r = self.client.post(self.url, self.post_data)
+        self.assertForbiddenKfet(r)
diff --git a/kfet/tests/testcases.py b/kfet/tests/testcases.py
index c2e1b848..977345e7 100644
--- a/kfet/tests/testcases.py
+++ b/kfet/tests/testcases.py
@@ -1,16 +1,114 @@
 from unittest import mock
+from urllib.parse import parse_qs, urlparse
 
 from django.core.urlresolvers import reverse
 from django.http import QueryDict
 from django.test import Client
+from django.utils import timezone
 
 from .utils import create_root, create_team, create_user
 
 
-class ViewTestCaseMixin:
+class TestCaseMixin:
+    def assertForbidden(self, response):
+        request = response.wsgi_request
+
+        try:
+            try:
+                # Is this an HTTP Forbidden response ?
+                self.assertEqual(response.status_code, 403)
+            except AssertionError:
+                # A redirection to the login view is fine too.
+
+                # Let's build the login url with the 'next' param on current
+                # page.
+                full_path = request.get_full_path()
+
+                querystring = QueryDict(mutable=True)
+                querystring['next'] = full_path
+
+                login_url = '/login?' + querystring.urlencode(safe='/')
+
+                # We don't focus on what the login view does.
+                # So don't fetch the redirect.
+                self.assertRedirects(
+                    response, login_url,
+                    fetch_redirect_response=False,
+                )
+        except AssertionError:
+            raise AssertionError(
+                "%(http_method)s request at %(path)s should be forbidden for "
+                "%(username)s user.\n"
+                "Response isn't 403, nor a redirect to login view. Instead, "
+                "response code is %(code)d." % {
+                    'http_method': request.method,
+                    'path': request.get_full_path(),
+                    'username': (
+                        "'{}'".format(request.user)
+                        if request.user.is_authenticated()
+                        else 'anonymous'
+                    ),
+                    'code': response.status_code,
+                }
+            )
+
+    def assertForbiddenKfet(self, response, form_ctx='form'):
+        try:
+            self.assertEqual(response.status_code, 200)
+            try:
+                form = response.context[form_ctx]
+                self.assertIn("Permission refusée", form.non_field_errors())
+            except (AssertionError, AttributeError, KeyError):
+                messages = [str(msg) for msg in response.context['messages']]
+                self.assertIn("Permission refusée", messages)
+        except AssertionError:
+            request = response.wsgi_request
+            raise AssertionError(
+                "%(http_method)s request at %(path)s should raise an error "
+                "for %(username)s user.\n"
+                "Cannot find any errors in non-field errors of form "
+                "'%(form_ctx)s', nor in messages." % {
+                    'http_method': request.method,
+                    'path': request.get_full_path(),
+                    'username': (
+                        "'%s'" % request.user
+                        if request.user.is_authenticated()
+                        else 'anonymous'
+                    ),
+                    'form_ctx': form_ctx,
+                }
+            )
+
+    def assertInstanceExpected(self, instance, expected):
+        for attr, expected_value in expected.items():
+            value = getattr(instance, attr)
+            if callable(value):
+                value = value()
+            self.assertEqual(value, expected_value)
+
+    def assertUrlsEqual(self, actual, expected):
+        if type(expected) == dict:
+            parsed = urlparse(actual)
+            checks = ['scheme', 'netloc', 'path', 'params']
+            for check in checks:
+                self.assertEqual(
+                    getattr(parsed, check),
+                    expected.get(check, ''),
+                )
+            self.assertDictEqual(
+                parse_qs(parsed.query),
+                expected.get('query', {}),
+            )
+        else:
+            self.assertEqual(actual, expected)
+
+
+class ViewTestCaseMixin(TestCaseMixin):
     url_name = None
     url_expected = None
 
+    http_methods = ['GET']
+
     auth_user = None
     auth_forbidden = []
 
@@ -22,6 +120,11 @@ class ViewTestCaseMixin:
         patcher_messages.start()
         self.addCleanup(patcher_messages.stop)
 
+        # A test can mock 'django.utils.timezone.now' and give this as return
+        # value. E.g. it is useful if the test checks values of 'auto_now' or
+        # 'auto_now_add' fields.
+        self.now = timezone.now()
+
         self.users = {}
         self.accounts = {}
 
@@ -58,6 +161,11 @@ class ViewTestCaseMixin:
         if hasattr(user.profile, 'account_kfet'):
             self.accounts[label] = user.profile.account_kfet
 
+    def get_user(self, label):
+        if self.auth_user is not None:
+            return self.auth_user
+        return self.auth_user_mapping.get(label)
+
     @property
     def urls_conf(self):
         return [{
@@ -81,62 +189,24 @@ class ViewTestCaseMixin:
     def url(self):
         return self.t_urls[0]
 
-    def assertForbidden(self, response):
-        request = response.wsgi_request
-
-        try:
-            try:
-                # Is this an HTTP Forbidden response ?
-                self.assertEqual(response.status_code, 403)
-            except AssertionError:
-                # A redirection to the login view is fine too.
-
-                # Let's build the login url with the 'next' param on current
-                # page.
-                full_path = request.get_full_path()
-
-                querystring = QueryDict(mutable=True)
-                querystring['next'] = full_path
-
-                login_url = '/login?' + querystring.urlencode(safe='/')
-
-                # We don't focus on what the login view does.
-                # So don't fetch the redirect.
-                self.assertRedirects(
-                    response, login_url,
-                    fetch_redirect_response=False,
-                )
-        except AssertionError:
-            raise AssertionError(
-                "%(http_method)s request at %(path)s should be forbidden for "
-                "%(username)s user.\n"
-                "Response isn't 403, nor a redirect to login view. Instead, "
-                "response code is %(code)d." % {
-                    'http_method': request.method,
-                    'path': request.get_full_path(),
-                    'username': (
-                        "'{}'".format(request.user.username)
-                        if request.user.username
-                        else 'anonymous'
-                    ),
-                    'code': response.status_code,
-                }
-            )
-
-    def assertForbiddenKfet(self, response):
-        self.assertEqual(response.status_code, 200)
-        form = response.context['form']
-        self.assertIn("Permission refusée", form.non_field_errors)
-
     def test_urls(self):
         for url, conf in zip(self.t_urls, self.urls_conf):
             self.assertEqual(url, conf['expected'])
 
     def test_forbidden(self):
-        for creds in self.auth_forbidden:
-            for url in self.t_urls:
-                client = Client()
-                if creds is not None:
-                    client.login(username=creds, password=creds)
-                r = client.get(url)
-                self.assertForbidden(r)
+        for method in self.http_methods:
+            for user in self.auth_forbidden:
+                for url in self.t_urls:
+                    self.check_forbidden(method, url, user)
+
+    def check_forbidden(self, method, url, user=None):
+        method = method.lower()
+        client = Client()
+        if user is not None:
+            client.login(username=user, password=user)
+
+        send_request = getattr(client, method)
+        data = getattr(self, '{}_data'.format(method), {})
+
+        r = send_request(url, data)
+        self.assertForbidden(r)
diff --git a/kfet/tests/utils.py b/kfet/tests/utils.py
index 4b739003..4681da67 100644
--- a/kfet/tests/utils.py
+++ b/kfet/tests/utils.py
@@ -7,44 +7,14 @@ from ..models import Account
 User = get_user_model()
 
 
-def user_add_perms(user, perms_labels):
-    """
-    Add perms to a user.
-
-    Args:
-        user (User instance)
-        perms (list of str 'app.perm_name')
-
-    Returns:
-        The same user (refetched from DB to avoid missing perms)
-
-    """
-    u_labels = set(perms_labels)
-
-    perms = []
-    for label in u_labels:
-        app_label, codename = label.split('.', 1)
-        perms.append(
-            Permission.objects.get(
-                content_type__app_label=app_label,
-                codename=codename,
-            )
-        )
-
-    user.user_permissions.add(*perms)
-
-    # If permissions have already been fetched for this user, we need to reload
-    # it to avoid using of the previous permissions cache.
-    # https://docs.djangoproject.com/en/1.11/topics/auth/default/#permission-caching
-    return User.objects.get(pk=user.pk)
-
-
 def _create_user_and_account(user_attrs, account_attrs, perms=None):
-    user_attrs.setdefault('password', user_attrs['username'])
-    user = User.objects.create_user(**user_attrs)
+    user_pwd = user_attrs.pop('password', user_attrs['username'])
+    user = User.objects.create(**user_attrs)
+    user.set_password(user_pwd)
+    user.save()
 
     account_attrs['cofprofile'] = user.profile
-    kfet_pwd = account_attrs.pop('password', None)
+    kfet_pwd = account_attrs.pop('password', 'kfetpwd_{}'.format(user_pwd))
 
     account = Account.objects.create(**account_attrs)
 
@@ -52,8 +22,6 @@ def _create_user_and_account(user_attrs, account_attrs, perms=None):
         user = user_add_perms(user, perms)
 
         if 'kfet.is_team' in perms:
-            if kfet_pwd is None:
-                kfet_pwd = 'kfetpwd_{}'.format(user_attrs['password'])
             account.change_pwd(kfet_pwd)
             account.save()
 
@@ -98,8 +66,41 @@ def create_root(username='root', trigramme='200', **kwargs):
     user_attrs.setdefault('first_name', 'super')
     user_attrs.setdefault('last_name', 'user')
     user_attrs.setdefault('email', 'mail@root.net')
+    user_attrs['is_superuser'] = user_attrs['is_staff'] = True
 
     account_attrs = kwargs.setdefault('account_attrs', {})
     account_attrs.setdefault('trigramme', trigramme)
 
     return _create_user_and_account(**kwargs)
+
+
+def get_perms(*labels):
+    perms = {}
+    for label in set(labels):
+        app_label, codename = label.split('.', 1)
+        perms[label] = Permission.objects.get(
+            content_type__app_label=app_label,
+            codename=codename,
+        )
+    return perms
+
+
+def user_add_perms(user, perms_labels):
+    """
+    Add perms to a user.
+
+    Args:
+        user (User instance)
+        perms (list of str 'app.perm_name')
+
+    Returns:
+        The same user (refetched from DB to avoid missing perms)
+
+    """
+    perms = get_perms(*perms_labels)
+    user.user_permissions.add(*perms.values())
+
+    # If permissions have already been fetched for this user, we need to reload
+    # it to avoid using of the previous permissions cache.
+    # https://docs.djangoproject.com/en/1.11/topics/auth/default/#permission-caching
+    return User.objects.get(pk=user.pk)

From 414b0eb433e86e6f758ef180537a04542fc28e00 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Aur=C3=A9lien=20Delobelle?= <aurelien.delobelle@gmail.com>
Date: Wed, 16 Aug 2017 21:28:16 +0200
Subject: [PATCH 003/101] Add missing perms to view/edit kfet config

---
 kfet/migrations/0057_add_perms_config.py | 18 ++++++++++++++++++
 kfet/models.py                           |  2 ++
 kfet/urls.py                             |  8 ++------
 kfet/views.py                            |  9 ++++++++-
 4 files changed, 30 insertions(+), 7 deletions(-)
 create mode 100644 kfet/migrations/0057_add_perms_config.py

diff --git a/kfet/migrations/0057_add_perms_config.py b/kfet/migrations/0057_add_perms_config.py
new file mode 100644
index 00000000..1300665f
--- /dev/null
+++ b/kfet/migrations/0057_add_perms_config.py
@@ -0,0 +1,18 @@
+# -*- coding: utf-8 -*-
+from __future__ import unicode_literals
+
+from django.db import migrations, models
+
+
+class Migration(migrations.Migration):
+
+    dependencies = [
+        ('kfet', '0056_change_account_meta'),
+    ]
+
+    operations = [
+        migrations.AlterModelOptions(
+            name='account',
+            options={'permissions': (('is_team', 'Is part of the team'), ('manage_perms', 'Gérer les permissions K-Fêt'), ('manage_addcosts', 'Gérer les majorations'), ('edit_balance_account', "Modifier la balance d'un compte"), ('change_account_password', "Modifier le mot de passe d'une personne de l'équipe"), ('special_add_account', 'Créer un compte avec une balance initiale'), ('can_force_close', 'Fermer manuellement la K-Fêt'), ('see_config', 'Voir la configuration K-Fêt'), ('change_config', 'Modifier la configuration K-Fêt'))},
+        ),
+    ]
diff --git a/kfet/models.py b/kfet/models.py
index ec146ad9..8b209468 100644
--- a/kfet/models.py
+++ b/kfet/models.py
@@ -75,6 +75,8 @@ class Account(models.Model):
             ('special_add_account',
                 "Créer un compte avec une balance initiale"),
             ('can_force_close', "Fermer manuellement la K-Fêt"),
+            ('see_config', "Voir la configuration K-Fêt"),
+            ('change_config', "Modifier la configuration K-Fêt"),
         )
 
     def __str__(self):
diff --git a/kfet/urls.py b/kfet/urls.py
index c3499b18..17ded7b8 100644
--- a/kfet/urls.py
+++ b/kfet/urls.py
@@ -188,13 +188,9 @@ urlpatterns = [
     # Settings urls
     # -----
 
-    url(r'^settings/$',
-        permission_required('kfet.change_settings')
-        (views.SettingsList.as_view()),
+    url(r'^settings/$', views.config_list,
         name='kfet.settings'),
-    url(r'^settings/edit$',
-        permission_required('kfet.change_settings')
-        (views.SettingsUpdate.as_view()),
+    url(r'^settings/edit$', views.config_update,
         name='kfet.settings.update'),
 
 
diff --git a/kfet/views.py b/kfet/views.py
index 5e451c9c..ec772a05 100644
--- a/kfet/views.py
+++ b/kfet/views.py
@@ -1452,6 +1452,9 @@ class SettingsList(TemplateView):
     template_name = 'kfet/settings.html'
 
 
+config_list = permission_required('kfet.see_config')(SettingsList.as_view())
+
+
 class SettingsUpdate(SuccessMessageMixin, FormView):
     form_class = KFetConfigForm
     template_name = 'kfet/settings_update.html'
@@ -1460,13 +1463,17 @@ class SettingsUpdate(SuccessMessageMixin, FormView):
 
     def form_valid(self, form):
         # Checking permission
-        if not self.request.user.has_perm('kfet.change_settings'):
+        if not self.request.user.has_perm('kfet.change_config'):
             form.add_error(None, 'Permission refusée')
             return self.form_invalid(form)
         form.save()
         return super().form_valid(form)
 
 
+config_update = (
+    permission_required('kfet.change_config')(SettingsUpdate.as_view())
+)
+
 
 # -----
 # Transfer views

From b4b15ab371dde565761511232c3311de758bc230 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Aur=C3=A9lien=20Delobelle?= <aurelien.delobelle@gmail.com>
Date: Wed, 16 Aug 2017 22:30:17 +0200
Subject: [PATCH 004/101] Tests of kfet config views pass

---
 kfet/tests/test_views.py | 24 ++++++++++++++++--------
 1 file changed, 16 insertions(+), 8 deletions(-)

diff --git a/kfet/tests/test_views.py b/kfet/tests/test_views.py
index 5ac82f33..1cd83ffd 100644
--- a/kfet/tests/test_views.py
+++ b/kfet/tests/test_views.py
@@ -1653,7 +1653,7 @@ class SettingsListViewTests(ViewTestCaseMixin, TestCase):
     def users_extra(self):
         return {
             'team1': create_team('team1', '101', perms=[
-                'kfet.change_settings',
+                'kfet.see_config',
             ]),
         }
 
@@ -1686,26 +1686,34 @@ class SettingsUpdateViewTests(ViewTestCaseMixin, TestCase):
     def users_extra(self):
         return {
             'team1': create_team('team1', '101', perms=[
-                'kfet.change_settings',
+                'kfet.change_config',
             ]),
         }
 
     def test_get_ok(self):
         r = self.client.get(self.url)
-        self.assertequal(r.status_code, 200)
+        self.assertEqual(r.status_code, 200)
 
     def test_post_ok(self):
         r = self.client.post(self.url, self.post_data)
-        self.assertRedirects(r, reverse('kfet.settings'))
+        # Redirect is skipped because client may lack permissions.
+        self.assertRedirects(
+            r,
+            reverse('kfet.settings'),
+            fetch_redirect_response=False,
+        )
 
-        self.assertDictEqual(dict(kfet_config.list()), {
+        expected_config = {
             'reduction_cof': Decimal('25'),
             'addcost_amount': Decimal('0.5'),
             'addcost_for': self.accounts['user'],
-            'overdraft_duration': timedelta(day=2),
+            'overdraft_duration': timedelta(days=2),
             'overdraft_amount': Decimal('25'),
-            'kfet_cancel_duration': timedelta(minutes=20),
-        })
+            'cancel_duration': timedelta(minutes=20),
+        }
+
+        for key, expected in expected_config.items():
+            self.assertEqual(getattr(kfet_config, key), expected)
 
 
 class TransferListViewTests(ViewTestCaseMixin, TestCase):

From 22d8317dee76a603ed102f486d0956bf5bfbb896 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Aur=C3=A9lien=20Delobelle?= <aurelien.delobelle@gmail.com>
Date: Tue, 8 Aug 2017 19:03:42 +0200
Subject: [PATCH 005/101] Fix kfet.open.tests

Due to messages sent in signals handlers, the tests were failing.
---
 kfet/open/tests.py | 14 +++++++++++++-
 1 file changed, 13 insertions(+), 1 deletion(-)

diff --git a/kfet/open/tests.py b/kfet/open/tests.py
index 1d6d5529..476eb6c0 100644
--- a/kfet/open/tests.py
+++ b/kfet/open/tests.py
@@ -1,5 +1,6 @@
 import json
 from datetime import timedelta
+from unittest import mock
 
 from django.contrib.auth.models import AnonymousUser, Permission, User
 from django.test import Client
@@ -118,6 +119,11 @@ class OpenKfetViewsTest(ChannelTestCase):
     """OpenKfet views unit-tests suite."""
 
     def setUp(self):
+        # Need this (and here) because of '<client>.login' in setUp
+        patcher_messages = mock.patch('gestioncof.signals.messages')
+        patcher_messages.start()
+        self.addCleanup(patcher_messages.stop)
+
         # get some permissions
         perms = {
             'kfet.is_team': Permission.objects.get(codename='is_team'),
@@ -194,7 +200,8 @@ class OpenKfetConsumerTest(ChannelTestCase):
         OpenKfetConsumer.group_send('kfet.open.team', {'test': 'plop'})
         self.assertIsNone(c.receive())
 
-    def test_team_user(self):
+    @mock.patch('gestioncof.signals.messages')
+    def test_team_user(self, mock_messages):
         """Team user is added to kfet.open.team group."""
         # setup team user and its client
         t = User.objects.create_user('team', '', 'team')
@@ -224,6 +231,11 @@ class OpenKfetScenarioTest(ChannelTestCase):
     """OpenKfet functionnal tests suite."""
 
     def setUp(self):
+        # Need this (and here) because of '<client>.login' in setUp
+        patcher_messages = mock.patch('gestioncof.signals.messages')
+        patcher_messages.start()
+        self.addCleanup(patcher_messages.stop)
+
         # anonymous client (for views)
         self.c = Client()
         # anonymous client (for websockets)

From b4338ce8dbaeb5291dd7c98f16ee4f69a0a323a5 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Aur=C3=A9lien=20Delobelle?= <aurelien.delobelle@gmail.com>
Date: Wed, 16 Aug 2017 22:54:40 +0200
Subject: [PATCH 006/101] View 'search account' should be restricted.

---
 kfet/autocomplete.py | 1 +
 1 file changed, 1 insertion(+)

diff --git a/kfet/autocomplete.py b/kfet/autocomplete.py
index 09057d4a..0a9bb42c 100644
--- a/kfet/autocomplete.py
+++ b/kfet/autocomplete.py
@@ -106,6 +106,7 @@ def account_create(request):
     return render(request, "kfet/account_create_autocomplete.html", data)
 
 
+@teamkfet_required
 def account_search(request):
     if "q" not in request.GET:
         raise Http404

From be1e67626c0fb8a9341a38501c3337b2872ccad4 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Aur=C3=A9lien=20Delobelle?= <aurelien.delobelle@gmail.com>
Date: Wed, 16 Aug 2017 23:04:22 +0200
Subject: [PATCH 007/101] Most data of suppliers should be optionnal.

---
 kfet/migrations/0058_amend_supplier.py | 39 ++++++++++++++++++++++++++
 kfet/models.py                         | 20 +++++++------
 2 files changed, 51 insertions(+), 8 deletions(-)
 create mode 100644 kfet/migrations/0058_amend_supplier.py

diff --git a/kfet/migrations/0058_amend_supplier.py b/kfet/migrations/0058_amend_supplier.py
new file mode 100644
index 00000000..0b45dade
--- /dev/null
+++ b/kfet/migrations/0058_amend_supplier.py
@@ -0,0 +1,39 @@
+# -*- coding: utf-8 -*-
+from __future__ import unicode_literals
+
+from django.db import migrations, models
+
+
+class Migration(migrations.Migration):
+
+    dependencies = [
+        ('kfet', '0057_add_perms_config'),
+    ]
+
+    operations = [
+        migrations.AlterField(
+            model_name='supplier',
+            name='address',
+            field=models.TextField(verbose_name='adresse', blank=True),
+        ),
+        migrations.AlterField(
+            model_name='supplier',
+            name='articles',
+            field=models.ManyToManyField(verbose_name='articles vendus', through='kfet.SupplierArticle', related_name='suppliers', to='kfet.Article'),
+        ),
+        migrations.AlterField(
+            model_name='supplier',
+            name='comment',
+            field=models.TextField(verbose_name='commentaire', blank=True),
+        ),
+        migrations.AlterField(
+            model_name='supplier',
+            name='email',
+            field=models.EmailField(max_length=254, verbose_name='adresse mail', blank=True),
+        ),
+        migrations.AlterField(
+            model_name='supplier',
+            name='phone',
+            field=models.CharField(max_length=20, verbose_name='téléphone', blank=True),
+        ),
+    ]
diff --git a/kfet/models.py b/kfet/models.py
index 8b209468..fb0d8813 100644
--- a/kfet/models.py
+++ b/kfet/models.py
@@ -8,6 +8,7 @@ from gestioncof.models import CofProfile
 from django.utils.six.moves import reduce
 from django.utils import timezone
 from django.utils.encoding import python_2_unicode_compatible
+from django.utils.translation import ugettext_lazy as _
 from django.db import transaction
 from django.db.models import F
 from datetime import date
@@ -524,21 +525,24 @@ class InventoryArticle(models.Model):
             self.stock_error = self.stock_new - self.stock_old
         super(InventoryArticle, self).save(*args, **kwargs)
 
-@python_2_unicode_compatible
+
 class Supplier(models.Model):
     articles = models.ManyToManyField(
         Article,
-        through      = 'SupplierArticle',
-        related_name = "suppliers")
-    name = models.CharField("nom", max_length = 45)
-    address = models.TextField("adresse")
-    email = models.EmailField("adresse mail")
-    phone = models.CharField("téléphone", max_length = 10)
-    comment = models.TextField("commentaire")
+        verbose_name=_("articles vendus"),
+        through='SupplierArticle',
+        related_name='suppliers',
+    )
+    name = models.CharField(_("nom"), max_length=45)
+    address = models.TextField(_("adresse"), blank=True)
+    email = models.EmailField(_("adresse mail"), blank=True)
+    phone = models.CharField(_("téléphone"), max_length=20, blank=True)
+    comment = models.TextField(_("commentaire"), blank=True)
 
     def __str__(self):
         return self.name
 
+
 class SupplierArticle(models.Model):
     supplier = models.ForeignKey(
         Supplier, on_delete = models.PROTECT)

From d8391e54a5a5abb5b52f9d3c6867ddaefae92880 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Aur=C3=A9lien=20Delobelle?= <aurelien.delobelle@gmail.com>
Date: Fri, 1 Sep 2017 12:39:17 +0200
Subject: [PATCH 008/101] Add docs to kfet TestCases

---
 kfet/tests/testcases.py | 132 +++++++++++++++++++++++++++++++++++++---
 1 file changed, 122 insertions(+), 10 deletions(-)

diff --git a/kfet/tests/testcases.py b/kfet/tests/testcases.py
index 977345e7..e2fc09ff 100644
--- a/kfet/tests/testcases.py
+++ b/kfet/tests/testcases.py
@@ -10,7 +10,18 @@ from .utils import create_root, create_team, create_user
 
 
 class TestCaseMixin:
+    """Extends TestCase for kfet application tests."""
+
     def assertForbidden(self, response):
+        """
+        Test that the response (retrieved with a Client) is a denial of access.
+
+        The response should verify one of the following:
+        - its HTTP response code is 403,
+        - it redirects to the login page with a GET parameter named 'next'
+        whose value is the url of the requested page.
+
+        """
         request = response.wsgi_request
 
         try:
@@ -53,6 +64,18 @@ class TestCaseMixin:
             )
 
     def assertForbiddenKfet(self, response, form_ctx='form'):
+        """
+        Test that a response (retrieved with a Client) contains error due to
+        lack of kfet permissions.
+
+        It checks that 'Permission refusée' is present in the non-field errors
+        of the form of response context at key 'form_ctx', or present in
+        messages.
+
+        This should be used for pages which can be accessed by the kfet team
+        members, but require additionnal permission(s) to make an operation.
+
+        """
         try:
             self.assertEqual(response.status_code, 200)
             try:
@@ -80,6 +103,10 @@ class TestCaseMixin:
             )
 
     def assertInstanceExpected(self, instance, expected):
+        """
+        Test that the values of the attributes and without-argument methods of
+        'instance' are equal to 'expected' pairs.
+        """
         for attr, expected_value in expected.items():
             value = getattr(instance, attr)
             if callable(value):
@@ -87,23 +114,104 @@ class TestCaseMixin:
             self.assertEqual(value, expected_value)
 
     def assertUrlsEqual(self, actual, expected):
+        """
+        Test that the url 'actual' is as 'expected'.
+
+        Arguments:
+            actual (str): Url to verify.
+            expected: Two forms are accepted.
+                * (str): Expected url. Strings equality is checked.
+                * (dict): Its keys must be attributes of 'urlparse(actual)'.
+                    Equality is checked for each present key, except for
+                    'query' which must be a dict of the expected query string
+                    parameters.
+
+        """
         if type(expected) == dict:
             parsed = urlparse(actual)
-            checks = ['scheme', 'netloc', 'path', 'params']
-            for check in checks:
-                self.assertEqual(
-                    getattr(parsed, check),
-                    expected.get(check, ''),
-                )
-            self.assertDictEqual(
-                parse_qs(parsed.query),
-                expected.get('query', {}),
-            )
+            for part, expected_part in expected.items():
+                if part == 'query':
+                    self.assertDictEqual(
+                        parse_qs(parsed.query),
+                        expected.get('query', {}),
+                    )
+                else:
+                    self.assertEqual(getattr(parsed, part), expected_part)
         else:
             self.assertEqual(actual, expected)
 
 
 class ViewTestCaseMixin(TestCaseMixin):
+    """
+    TestCase extension to ease tests of kfet views.
+
+
+    Urls concerns
+    -------------
+
+    # Basic usage
+
+    Attributes:
+        url_name (str): Name of view under test, as given to 'reverse'
+            function.
+        url_args (list, optional): Will be given to 'reverse' call.
+        url_kwargs (dict, optional): Same.
+        url_expcted (str): What 'reverse' should return given previous
+            attributes.
+
+    View url can then be accessed at the 'url' attribute.
+
+    # Advanced usage
+
+    If multiple combinations of url name, args, kwargs can be used for a view,
+    it is possible to define 'urls_conf' attribute. It must be a list whose
+    each item is a dict defining arguments for 'reverse' call ('name', 'args',
+    'kwargs' keys) and its expected result ('expected' key).
+
+    The reversed urls can be accessed at the 't_urls' attribute.
+
+
+    Users concerns
+    --------------
+
+    During setup, three users are created with their kfet account:
+    - 'user': a basic user without any permission, account trigramme: 000,
+    - 'team': a user with kfet.is_team permission, account trigramme: 100,
+    - 'root': a superuser, account trigramme: 200.
+    Their password is their username.
+
+    One can create additionnal users with 'users_extra' attribute, or prevent
+    these 3 users to be created with 'users_base' attribute. See these two
+    properties for further informations.
+
+    By using 'register_user' method, these users can then be accessed at
+    'users' attribute by their label. Similarly, their kfet account is
+    registered on 'accounts' attribute.
+
+    A user label can be given to 'auth_user' attribute. The related user is
+    then authenticated on self.client during test setup. Its value defaults to
+    'None', meaning no user is authenticated.
+
+
+    Automated tests
+    ---------------
+
+    # Url reverse
+
+    Based on url-related attributes/properties, the test 'test_urls' checks
+    that expected url is returned by 'reverse' (once with basic url usage and
+    each for advanced usage).
+
+    # Forbidden responses
+
+    The 'test_forbidden' test verifies that each user, from labels of
+    'auth_forbidden' attribute, can't access the url(s), i.e. response should
+    be a 403, or a redirect to login view.
+
+    Tested HTTP requests are given by 'http_methods' attribute. Additional data
+    can be given by defining an attribute '<method(lowercase)>_data'.
+
+    """
     url_name = None
     url_expected = None
 
@@ -113,6 +221,9 @@ class ViewTestCaseMixin(TestCaseMixin):
     auth_forbidden = []
 
     def setUp(self):
+        """
+        Warning: Do not forget to call super().setUp() in subclasses.
+        """
         # Signals handlers on login/logout send messages.
         # Due to the way the Django' test Client performs login, this raise an
         # error. As workaround, we mock the Django' messages module.
@@ -125,6 +236,7 @@ class ViewTestCaseMixin(TestCaseMixin):
         # 'auto_now_add' fields.
         self.now = timezone.now()
 
+        # These attributes register users and accounts instances.
         self.users = {}
         self.accounts = {}
 

From 997b63d6b69828ee6c82b226b7891e877a1507ae Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Aur=C3=A9lien=20Delobelle?= <aurelien.delobelle@gmail.com>
Date: Fri, 1 Sep 2017 13:35:32 +0200
Subject: [PATCH 009/101] More docs for kfet.tests.utils

---
 kfet/tests/utils.py | 82 +++++++++++++++++++++++++++++++++++++++++++++
 1 file changed, 82 insertions(+)

diff --git a/kfet/tests/utils.py b/kfet/tests/utils.py
index 4681da67..30eb05ad 100644
--- a/kfet/tests/utils.py
+++ b/kfet/tests/utils.py
@@ -8,6 +8,21 @@ User = get_user_model()
 
 
 def _create_user_and_account(user_attrs, account_attrs, perms=None):
+    """
+    Create a user and its account, and assign permissions to this user.
+
+    Arguments
+        user_attrs (dict): User data (first name, last name, password...).
+        account_attrs (dict): Account data (department, kfet password...).
+        perms (list of str: 'app.perm'): These permissions will be assigned to
+            the created user. No permission are assigned by default.
+
+    If 'password' is not given in 'user_attrs', username is used as password.
+
+    If 'kfet.is_team' is in 'perms' and 'password' is not in 'account_attrs',
+    the account password is 'kfetpwd_<user pwd>'.
+
+    """
     user_pwd = user_attrs.pop('password', user_attrs['username'])
     user = User.objects.create(**user_attrs)
     user.set_password(user_pwd)
@@ -29,6 +44,27 @@ def _create_user_and_account(user_attrs, account_attrs, perms=None):
 
 
 def create_user(username='user', trigramme='000', **kwargs):
+    """
+    Create a user without any permission and its kfet account.
+
+    username and trigramme are accepted as arguments (defaults to 'user' and
+    '000').
+
+    user_attrs, account_attrs and perms can be given as keyword arguments to
+    customize the user and its kfet account.
+
+    # Default values
+
+    User
+        * username: user
+        * password: user
+        * first_name: first
+        * last_name: last
+        * email: mail@user.net
+    Account
+        * trigramme: 000
+
+    """
     user_attrs = kwargs.setdefault('user_attrs', {})
 
     user_attrs.setdefault('username', username)
@@ -43,6 +79,28 @@ def create_user(username='user', trigramme='000', **kwargs):
 
 
 def create_team(username='team', trigramme='100', **kwargs):
+    """
+    Create a user, member of the kfet team, and its kfet account.
+
+    username and trigramme are accepted as arguments (defaults to 'team' and
+    '100').
+
+    user_attrs, account_attrs and perms can be given as keyword arguments to
+    customize the user and its kfet account.
+
+    # Default values
+
+    User
+        * username: team
+        * password: team
+        * first_name: team
+        * last_name: member
+        * email: mail@team.net
+    Account
+        * trigramme: 100
+        * kfet password: kfetpwd_team
+
+    """
     user_attrs = kwargs.setdefault('user_attrs', {})
 
     user_attrs.setdefault('username', username)
@@ -60,6 +118,29 @@ def create_team(username='team', trigramme='100', **kwargs):
 
 
 def create_root(username='root', trigramme='200', **kwargs):
+    """
+    Create a superuser and its kfet account.
+
+    username and trigramme are accepted as arguments (defaults to 'root' and
+    '200').
+
+    user_attrs, account_attrs and perms can be given as keyword arguments to
+    customize the user and its kfet account.
+
+    # Default values
+
+    User
+        * username: root
+        * password: root
+        * first_name: super
+        * last_name: user
+        * email: mail@root.net
+        * is_staff, is_superuser: True
+    Account
+        * trigramme: 200
+        * kfet password: kfetpwd_root
+
+    """
     user_attrs = kwargs.setdefault('user_attrs', {})
 
     user_attrs.setdefault('username', username)
@@ -75,6 +156,7 @@ def create_root(username='root', trigramme='200', **kwargs):
 
 
 def get_perms(*labels):
+    """Return Permission instances from a list of '<app>.<perm_codename>'."""
     perms = {}
     for label in set(labels):
         app_label, codename = label.split('.', 1)

From af97c0cda606ab112646ae850bc1b8c356ce6057 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Aur=C3=A9lien=20Delobelle?= <aurelien.delobelle@gmail.com>
Date: Fri, 1 Sep 2017 16:37:14 +0200
Subject: [PATCH 010/101] Improve users management on kfet TestCase, and Py34
 compat

---
 kfet/tests/test_views.py | 81 ++++++++++++++--------------------------
 kfet/tests/testcases.py  | 45 ++++++++++++++++++----
 2 files changed, 64 insertions(+), 62 deletions(-)

diff --git a/kfet/tests/test_views.py b/kfet/tests/test_views.py
index 1cd83ffd..ff9803c9 100644
--- a/kfet/tests/test_views.py
+++ b/kfet/tests/test_views.py
@@ -93,8 +93,7 @@ class AccountCreateViewTests(ViewTestCaseMixin, TestCase):
         'email': 'email@domain.net',
     }
 
-    @property
-    def users_extra(self):
+    def get_users_extra(self):
         return {
             'team1': create_team('team1', '101', perms=['kfet.add_account']),
         }
@@ -212,8 +211,7 @@ class AccountReadViewTests(ViewTestCaseMixin, TestCase):
     auth_user = 'team'
     auth_forbidden = [None, 'user']
 
-    @property
-    def users_extra(self):
+    def get_users_extra(self):
         return {
             'user1': create_user('user1', '001'),
         }
@@ -292,8 +290,7 @@ class AccountUpdateViewTests(ViewTestCaseMixin, TestCase):
         'pwd2': '',
     }
 
-    @property
-    def users_extra(self):
+    def get_users_extra(self):
         return {
             'user1': create_user('user1', '001'),
             'team1': create_team('team1', '101', perms=[
@@ -359,8 +356,7 @@ class AccountGroupListViewTests(ViewTestCaseMixin, TestCase):
     auth_user = 'team1'
     auth_forbidden = [None, 'user', 'team']
 
-    @property
-    def users_extra(self):
+    def get_users_extra(self):
         return {
             'team1': create_team('team1', '101', perms=['kfet.manage_perms']),
         }
@@ -390,8 +386,7 @@ class AccountGroupCreateViewTests(ViewTestCaseMixin, TestCase):
     auth_user = 'team1'
     auth_forbidden = [None, 'user', 'team']
 
-    @property
-    def users_extra(self):
+    def get_users_extra(self):
         return {
             'team1': create_team('team1', '101', perms=['kfet.manage_perms']),
         }
@@ -449,8 +444,7 @@ class AccountGroupUpdateViewTests(ViewTestCaseMixin, TestCase):
     def url_expected(self):
         return '/k-fet/accounts/groups/{}/edit'.format(self.group.pk)
 
-    @property
-    def users_extra(self):
+    def get_users_extra(self):
         return {
             'team1': create_team('team1', '101', perms=['kfet.manage_perms']),
         }
@@ -502,8 +496,7 @@ class AccountNegativeListViewTests(ViewTestCaseMixin, TestCase):
     auth_user = 'team1'
     auth_forbidden = [None, 'user', 'team']
 
-    @property
-    def users_extra(self):
+    def get_users_extra(self):
         return {
             'team1': create_team('team1', '101', perms=['kfet.view_negs']),
         }
@@ -533,8 +526,7 @@ class AccountStatOperationListViewTests(ViewTestCaseMixin, TestCase):
     auth_user = 'user1'
     auth_forbidden = [None, 'user', 'team']
 
-    @property
-    def users_extra(self):
+    def get_users_extra(self):
         return {'user1': create_user('user1', '001')}
 
     def test_ok(self):
@@ -594,8 +586,7 @@ class AccountStatOperationViewTests(ViewTestCaseMixin, TestCase):
     auth_user = 'user1'
     auth_forbidden = [None, 'user', 'team']
 
-    @property
-    def users_extra(self):
+    def get_users_extra(self):
         return {'user1': create_user('user1', '001')}
 
     def test_ok(self):
@@ -611,8 +602,7 @@ class AccountStatBalanceListViewTests(ViewTestCaseMixin, TestCase):
     auth_user = 'user1'
     auth_forbidden = [None, 'user', 'team']
 
-    @property
-    def users_extra(self):
+    def get_users_extra(self):
         return {'user1': create_user('user1', '001')}
 
     def test_ok(self):
@@ -666,8 +656,7 @@ class AccountStatBalanceViewTests(ViewTestCaseMixin, TestCase):
     auth_user = 'user1'
     auth_forbidden = [None, 'user', 'team']
 
-    @property
-    def users_extra(self):
+    def get_users_extra(self):
         return {'user1': create_user('user1', '001')}
 
     def test_ok(self):
@@ -724,8 +713,7 @@ class CheckoutCreateViewTests(ViewTestCaseMixin, TestCase):
         # 'is_protected': not checked
     }
 
-    @property
-    def users_extra(self):
+    def get_users_extra(self):
         return {
             'team1': create_team('team1', '101', perms=['kfet.add_checkout']),
         }
@@ -807,8 +795,7 @@ class CheckoutUpdateViewTests(ViewTestCaseMixin, TestCase):
     def url_expected(self):
         return '/k-fet/checkouts/{}/edit'.format(self.checkout.pk)
 
-    @property
-    def users_extra(self):
+    def get_users_extra(self):
         return {
             'team1': create_team('team1', '101', perms=[
                 'kfet.change_checkout',
@@ -927,8 +914,7 @@ class CheckoutStatementCreateViewTests(ViewTestCaseMixin, TestCase):
     def url_expected(self):
         return '/k-fet/checkouts/{}/statements/add'.format(self.checkout.pk)
 
-    @property
-    def users_extra(self):
+    def get_users_extra(self):
         return {
             'team1': create_team('team1', '001', perms=[
                 'kfet.add_checkoutstatement',
@@ -1014,8 +1000,7 @@ class CheckoutStatementUpdateViewTests(ViewTestCaseMixin, TestCase):
             pk=self.statement.pk,
         )
 
-    @property
-    def users_extra(self):
+    def get_users_extra(self):
         return {
             'team1': create_team('team1', '101', perms=[
                 'kfet.change_checkoutstatement',
@@ -1109,8 +1094,7 @@ class ArticleCategoryUpdateViewTests(ViewTestCaseMixin, TestCase):
     def url_expected(self):
         return '/k-fet/categories/{}/edit'.format(self.category.pk)
 
-    @property
-    def users_extra(self):
+    def get_users_extra(self):
         return {
             'team1': create_team('team1', '101', perms=[
                 'kfet.change_articlecategory',
@@ -1188,8 +1172,7 @@ class ArticleCreateViewTests(ViewTestCaseMixin, TestCase):
     auth_user = 'team'
     auth_forbidden = [None, 'user']
 
-    @property
-    def users_extra(self):
+    def get_users_extra(self):
         return {
             'team1': create_team('team1', '101', perms=['kfet.add_article']),
         }
@@ -1276,8 +1259,7 @@ class ArticleUpdateViewTests(ViewTestCaseMixin, TestCase):
     def url_expected(self):
         return '/k-fet/articles/{}/edit'.format(self.article.pk)
 
-    @property
-    def users_extra(self):
+    def get_users_extra(self):
         return {
             'team1': create_team('team1', '101', perms=[
                 'kfet.change_article',
@@ -1564,8 +1546,7 @@ class KPsulUpdateAddcost(ViewTestCaseMixin, TestCase):
         'amount': '0.5',
     }
 
-    @property
-    def users_extra(self):
+    def get_users_extra(self):
         return {
             'team1': create_team('team1', '101', perms=[
                 'kfet.manage_addcosts',
@@ -1649,8 +1630,7 @@ class SettingsListViewTests(ViewTestCaseMixin, TestCase):
     auth_user = 'team1'
     auth_forbidden = [None, 'user', 'team']
 
-    @property
-    def users_extra(self):
+    def get_users_extra(self):
         return {
             'team1': create_team('team1', '101', perms=[
                 'kfet.see_config',
@@ -1682,8 +1662,7 @@ class SettingsUpdateViewTests(ViewTestCaseMixin, TestCase):
             'kfet_cancel_duration': '00:20:00',
         }
 
-    @property
-    def users_extra(self):
+    def get_users_extra(self):
         return {
             'team1': create_team('team1', '101', perms=[
                 'kfet.change_config',
@@ -1749,8 +1728,7 @@ class TransferPerformViewTests(ViewTestCaseMixin, TestCase):
     auth_user = 'team1'
     auth_forbidden = [None, 'user', 'team']
 
-    @property
-    def users_extra(self):
+    def get_users_extra(self):
         return {
             'team1': create_team('team1', '101', perms=[
                 # Required
@@ -1806,8 +1784,7 @@ class TransferCancelViewTests(ViewTestCaseMixin, TestCase):
     auth_user = 'team1'
     auth_forbidden = [None, 'user', 'team']
 
-    @property
-    def users_extra(self):
+    def get_users_extra(self):
         return {
             'team1': create_team('team1', '101', perms=[
                 # Convenience
@@ -1898,8 +1875,7 @@ class InventoryCreateViewTests(ViewTestCaseMixin, TestCase):
     auth_user = 'team'
     auth_forbidden = [None, 'user']
 
-    @property
-    def users_extra(self):
+    def get_users_extra(self):
         return {
             'team1': create_team('team1', '101', perms=[
                 'kfet.add_inventory',
@@ -2069,8 +2045,7 @@ class SupplierUpdateViewTests(ViewTestCaseMixin, TestCase):
     def url_expected(self):
         return '/k-fet/orders/suppliers/{}/edit'.format(self.supplier.pk)
 
-    @property
-    def users_extra(self):
+    def get_users_extra(self):
         return {
             'team1': create_team('team1', '101', perms=[
                 'kfet.change_supplier',
@@ -2124,8 +2099,7 @@ class OrderCreateViewTests(ViewTestCaseMixin, TestCase):
     def url_expected(self):
         return '/k-fet/orders/suppliers/{}/new-order'.format(self.supplier.pk)
 
-    @property
-    def users_extra(self):
+    def get_users_extra(self):
         return {
             'team1': create_team('team1', '101', perms=['kfet.add_order']),
         }
@@ -2195,8 +2169,7 @@ class OrderToInventoryViewTests(ViewTestCaseMixin, TestCase):
     def url_expected(self):
         return '/k-fet/orders/{}/to_inventory'.format(self.order.pk)
 
-    @property
-    def users_extra(self):
+    def get_users_extra(self):
         return {
             'team1': create_team('team1', '101', perms=[
                 'kfet.order_to_inventory',
diff --git a/kfet/tests/testcases.py b/kfet/tests/testcases.py
index e2fc09ff..d7d7eac5 100644
--- a/kfet/tests/testcases.py
+++ b/kfet/tests/testcases.py
@@ -5,6 +5,7 @@ from django.core.urlresolvers import reverse
 from django.http import QueryDict
 from django.test import Client
 from django.utils import timezone
+from django.utils.functional import cached_property
 
 from .utils import create_root, create_team, create_user
 
@@ -180,9 +181,9 @@ class ViewTestCaseMixin(TestCaseMixin):
     - 'root': a superuser, account trigramme: 200.
     Their password is their username.
 
-    One can create additionnal users with 'users_extra' attribute, or prevent
-    these 3 users to be created with 'users_base' attribute. See these two
-    properties for further informations.
+    One can create additionnal users with 'get_users_extra' method, or prevent
+    these 3 users to be created with 'get_users_base' method. See these two
+    methods for further informations.
 
     By using 'register_user' method, these users can then be accessed at
     'users' attribute by their label. Similarly, their kfet account is
@@ -240,7 +241,7 @@ class ViewTestCaseMixin(TestCaseMixin):
         self.users = {}
         self.accounts = {}
 
-        for label, user in {**self.users_base, **self.users_extra}.items():
+        for label, user in dict(self.users_base, **self.users_extra).items():
             self.register_user(label, user)
 
         if self.auth_user:
@@ -252,8 +253,20 @@ class ViewTestCaseMixin(TestCaseMixin):
                 )
             )
 
-    @property
-    def users_base(self):
+    def tearDown(self):
+        del self.users_base
+        del self.users_extra
+
+    def get_users_base(self):
+        """
+        Dict of <label: user instance>.
+
+        Note: Don't access yourself this property. Use 'users_base' attribute
+        which cache the returned value from here.
+        It allows to give functions calls, which creates users instances, as
+        values here.
+
+        """
         # Format desc: username, password, trigramme
         return {
             # user, user, 000
@@ -264,10 +277,26 @@ class ViewTestCaseMixin(TestCaseMixin):
             'root': create_root(),
         }
 
-    @property
-    def users_extra(self):
+    @cached_property
+    def users_base(self):
+        return self.get_users_base()
+
+    def get_users_extra(self):
+        """
+        Dict of <label: user instance>.
+
+        Note: Don't access yourself this property. Use 'users_base' attribute
+        which cache the returned value from here.
+        It allows to give functions calls, which create users instances, as
+        values here.
+
+        """
         return {}
 
+    @cached_property
+    def users_extra(self):
+        return self.get_users_extra()
+
     def register_user(self, label, user):
         self.users[label] = user
         if hasattr(user.profile, 'account_kfet'):

From bf61e41b50eac097093d424f58252ed618168da0 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Aur=C3=A9lien=20Delobelle?= <aurelien.delobelle@gmail.com>
Date: Wed, 13 Sep 2017 01:57:31 +0200
Subject: [PATCH 011/101] Move auth-related from 'kfet' app to 'kfet.auth'.

---
 cof/settings/common.py                        |  7 +-
 kfet/auth/__init__.py                         |  1 +
 kfet/auth/apps.py                             |  8 +++
 kfet/{ => auth}/backends.py                   |  0
 kfet/auth/context_processors.py               | 10 +++
 kfet/auth/fields.py                           | 20 ++++++
 kfet/auth/forms.py                            | 44 ++++++++++++
 kfet/{ => auth}/middleware.py                 |  2 +-
 kfet/auth/migrations/0001_initial.py          | 21 ++++++
 kfet/auth/migrations/__init__.py              |  0
 kfet/auth/models.py                           |  5 ++
 .../templates/kfet/login_genericteam.html     |  0
 kfet/{tests/test_forms.py => auth/tests.py}   |  0
 kfet/auth/views.py                            | 69 +++++++++++++++++++
 kfet/context_processors.py                    | 11 ---
 kfet/forms.py                                 | 61 ++--------------
 .../0058_delete_genericteamtoken.py           | 17 +++++
 kfet/models.py                                |  6 +-
 kfet/views.py                                 | 65 ++---------------
 19 files changed, 213 insertions(+), 134 deletions(-)
 create mode 100644 kfet/auth/__init__.py
 create mode 100644 kfet/auth/apps.py
 rename kfet/{ => auth}/backends.py (100%)
 create mode 100644 kfet/auth/context_processors.py
 create mode 100644 kfet/auth/fields.py
 create mode 100644 kfet/auth/forms.py
 rename kfet/{ => auth}/middleware.py (95%)
 create mode 100644 kfet/auth/migrations/0001_initial.py
 create mode 100644 kfet/auth/migrations/__init__.py
 create mode 100644 kfet/auth/models.py
 rename kfet/{ => auth}/templates/kfet/login_genericteam.html (100%)
 rename kfet/{tests/test_forms.py => auth/tests.py} (100%)
 create mode 100644 kfet/auth/views.py
 create mode 100644 kfet/migrations/0058_delete_genericteamtoken.py

diff --git a/cof/settings/common.py b/cof/settings/common.py
index ba0b6044..92759d21 100644
--- a/cof/settings/common.py
+++ b/cof/settings/common.py
@@ -90,6 +90,7 @@ INSTALLED_APPS = [
     'wagtailmenus',
     'modelcluster',
     'taggit',
+    'kfet.auth',
     'kfet.cms',
 ]
 
@@ -99,7 +100,7 @@ MIDDLEWARE_CLASSES = [
     'django.middleware.csrf.CsrfViewMiddleware',
     'django.contrib.auth.middleware.AuthenticationMiddleware',
     'django.contrib.auth.middleware.SessionAuthenticationMiddleware',
-    'kfet.middleware.KFetAuthenticationMiddleware',
+    'kfet.auth.middleware.KFetAuthenticationMiddleware',
     'django.contrib.messages.middleware.MessageMiddleware',
     'django.middleware.clickjacking.XFrameOptionsMiddleware',
     'django.middleware.security.SecurityMiddleware',
@@ -127,7 +128,7 @@ TEMPLATES = [
                 'wagtailmenus.context_processors.wagtailmenus',
                 'djconfig.context_processors.config',
                 'gestioncof.shared.context_processor',
-                'kfet.context_processors.auth',
+                'kfet.auth.context_processors.auth',
                 'kfet.context_processors.config',
             ],
         },
@@ -190,7 +191,7 @@ CAS_EMAIL_FORMAT = "%s@clipper.ens.fr"
 AUTHENTICATION_BACKENDS = (
     'django.contrib.auth.backends.ModelBackend',
     'gestioncof.shared.COFCASBackend',
-    'kfet.backends.GenericTeamBackend',
+    'kfet.auth.backends.GenericTeamBackend',
 )
 
 RECAPTCHA_USE_SSL = True
diff --git a/kfet/auth/__init__.py b/kfet/auth/__init__.py
new file mode 100644
index 00000000..63392684
--- /dev/null
+++ b/kfet/auth/__init__.py
@@ -0,0 +1 @@
+default_app_config = 'kfet.auth.apps.KFetAuthConfig'
diff --git a/kfet/auth/apps.py b/kfet/auth/apps.py
new file mode 100644
index 00000000..ab791d18
--- /dev/null
+++ b/kfet/auth/apps.py
@@ -0,0 +1,8 @@
+from django.apps import AppConfig
+from django.utils.translation import ugettext_lazy as _
+
+
+class KFetAuthConfig(AppConfig):
+    name = 'kfet.auth'
+    label = 'kfetauth'
+    verbose_name = _("K-Fêt - Authentification et Autorisation")
diff --git a/kfet/backends.py b/kfet/auth/backends.py
similarity index 100%
rename from kfet/backends.py
rename to kfet/auth/backends.py
diff --git a/kfet/auth/context_processors.py b/kfet/auth/context_processors.py
new file mode 100644
index 00000000..07c9537f
--- /dev/null
+++ b/kfet/auth/context_processors.py
@@ -0,0 +1,10 @@
+from django.contrib.auth.context_processors import PermWrapper
+
+
+def auth(request):
+    if hasattr(request, 'real_user'):
+        return {
+            'user': request.real_user,
+            'perms': PermWrapper(request.real_user),
+        }
+    return {}
diff --git a/kfet/auth/fields.py b/kfet/auth/fields.py
new file mode 100644
index 00000000..28ba1c9e
--- /dev/null
+++ b/kfet/auth/fields.py
@@ -0,0 +1,20 @@
+from django import forms
+from django.contrib.auth.models import Permission
+from django.contrib.contenttypes.models import ContentType
+from django.forms import widgets
+
+
+class KFetPermissionsField(forms.ModelMultipleChoiceField):
+
+    def __init__(self, *args, **kwargs):
+        queryset = Permission.objects.filter(
+            content_type__in=ContentType.objects.filter(app_label="kfet"),
+        )
+        super().__init__(
+            queryset=queryset,
+            widget=widgets.CheckboxSelectMultiple,
+            *args, **kwargs
+        )
+
+    def label_from_instance(self, obj):
+        return obj.name
diff --git a/kfet/auth/forms.py b/kfet/auth/forms.py
new file mode 100644
index 00000000..0c9fa53b
--- /dev/null
+++ b/kfet/auth/forms.py
@@ -0,0 +1,44 @@
+from django import forms
+from django.contrib.auth.models import Group, User
+
+from .fields import KFetPermissionsField
+
+
+class GroupForm(forms.ModelForm):
+    permissions = KFetPermissionsField()
+
+    def clean_name(self):
+        name = self.cleaned_data['name']
+        return 'K-Fêt %s' % name
+
+    def clean_permissions(self):
+        kfet_perms = self.cleaned_data['permissions']
+        # TODO: With Django >=1.11, the QuerySet method 'difference' can be
+        # used.
+        # other_groups = self.instance.permissions.difference(
+        #     self.fields['permissions'].queryset
+        # )
+        other_perms = self.instance.permissions.exclude(
+            pk__in=[p.pk for p in self.fields['permissions'].queryset],
+        )
+        return list(kfet_perms) + list(other_perms)
+
+    class Meta:
+        model = Group
+        fields = ['name', 'permissions']
+
+
+class UserGroupForm(forms.ModelForm):
+    groups = forms.ModelMultipleChoiceField(
+            Group.objects.filter(name__icontains='K-Fêt'),
+            label='Statut équipe',
+            required=False)
+
+    def clean_groups(self):
+        kfet_groups = self.cleaned_data.get('groups')
+        other_groups = self.instance.groups.exclude(name__icontains='K-Fêt')
+        return list(kfet_groups) + list(other_groups)
+
+    class Meta:
+        model = User
+        fields = ['groups']
diff --git a/kfet/middleware.py b/kfet/auth/middleware.py
similarity index 95%
rename from kfet/middleware.py
rename to kfet/auth/middleware.py
index 9502d393..1a930c3b 100644
--- a/kfet/middleware.py
+++ b/kfet/auth/middleware.py
@@ -2,7 +2,7 @@
 
 from django.contrib.auth.models import User
 
-from kfet.backends import KFetBackend
+from .backends import KFetBackend
 
 
 class KFetAuthenticationMiddleware(object):
diff --git a/kfet/auth/migrations/0001_initial.py b/kfet/auth/migrations/0001_initial.py
new file mode 100644
index 00000000..30dfca70
--- /dev/null
+++ b/kfet/auth/migrations/0001_initial.py
@@ -0,0 +1,21 @@
+# -*- coding: utf-8 -*-
+from __future__ import unicode_literals
+
+from django.db import migrations, models
+
+
+class Migration(migrations.Migration):
+
+    dependencies = [
+        ('auth', '0006_require_contenttypes_0002'),
+    ]
+
+    operations = [
+        migrations.CreateModel(
+            name='GenericTeamToken',
+            fields=[
+                ('id', models.AutoField(verbose_name='ID', auto_created=True, serialize=False, primary_key=True)),
+                ('token', models.CharField(unique=True, max_length=50)),
+            ],
+        ),
+    ]
diff --git a/kfet/auth/migrations/__init__.py b/kfet/auth/migrations/__init__.py
new file mode 100644
index 00000000..e69de29b
diff --git a/kfet/auth/models.py b/kfet/auth/models.py
new file mode 100644
index 00000000..53aef6c9
--- /dev/null
+++ b/kfet/auth/models.py
@@ -0,0 +1,5 @@
+from django.db import models
+
+
+class GenericTeamToken(models.Model):
+    token = models.CharField(max_length=50, unique=True)
diff --git a/kfet/templates/kfet/login_genericteam.html b/kfet/auth/templates/kfet/login_genericteam.html
similarity index 100%
rename from kfet/templates/kfet/login_genericteam.html
rename to kfet/auth/templates/kfet/login_genericteam.html
diff --git a/kfet/tests/test_forms.py b/kfet/auth/tests.py
similarity index 100%
rename from kfet/tests/test_forms.py
rename to kfet/auth/tests.py
diff --git a/kfet/auth/views.py b/kfet/auth/views.py
new file mode 100644
index 00000000..ce44b007
--- /dev/null
+++ b/kfet/auth/views.py
@@ -0,0 +1,69 @@
+from django.contrib import messages
+from django.contrib.messages.views import SuccessMessageMixin
+from django.contrib.auth import authenticate, login
+from django.contrib.auth.decorators import permission_required
+from django.contrib.auth.models import Group, User
+from django.core.urlresolvers import reverse_lazy
+from django.db.models import Prefetch
+from django.shortcuts import render
+from django.utils.crypto import get_random_string
+from django.views.generic.edit import CreateView, UpdateView
+
+from django_cas_ng.views import logout as cas_logout_view
+
+from kfet.decorators import teamkfet_required
+
+from .forms import GroupForm
+from .models import GenericTeamToken
+
+
+@teamkfet_required
+def login_genericteam(request):
+    # Check si besoin de déconnecter l'utilisateur de CAS
+    cas_logout = None
+    if request.user.profile.login_clipper:
+        # Récupèration de la vue de déconnexion de CAS
+        # Ici, car request sera modifié après
+        next_page = request.META.get('HTTP_REFERER', None)
+        cas_logout = cas_logout_view(request, next_page=next_page)
+
+    # Authentification du compte générique
+    token = GenericTeamToken.objects.create(token=get_random_string(50))
+    user = authenticate(username="kfet_genericteam", token=token.token)
+    login(request, user)
+
+    messages.success(request, "Connecté en utilisateur partagé")
+
+    return cas_logout or render(request, "kfet/login_genericteam.html")
+
+
+@permission_required('kfet.manage_perms')
+def account_group(request):
+    user_pre = Prefetch(
+        'user_set',
+        queryset=User.objects.select_related('profile__account_kfet'),
+    )
+    groups = (
+        Group.objects
+        .filter(name__icontains='K-Fêt')
+        .prefetch_related('permissions', user_pre)
+    )
+    return render(request, 'kfet/account_group.html', {
+        'groups': groups,
+    })
+
+
+class AccountGroupCreate(SuccessMessageMixin, CreateView):
+    model = Group
+    template_name = 'kfet/account_group_form.html'
+    form_class = GroupForm
+    success_message = 'Nouveau groupe : %(name)s'
+    success_url = reverse_lazy('kfet.account.group')
+
+
+class AccountGroupUpdate(SuccessMessageMixin, UpdateView):
+    queryset = Group.objects.filter(name__icontains='K-Fêt')
+    template_name = 'kfet/account_group_form.html'
+    form_class = GroupForm
+    success_message = 'Groupe modifié : %(name)s'
+    success_url = reverse_lazy('kfet.account.group')
diff --git a/kfet/context_processors.py b/kfet/context_processors.py
index 4c7b4fe4..04feec81 100644
--- a/kfet/context_processors.py
+++ b/kfet/context_processors.py
@@ -1,18 +1,7 @@
 # -*- coding: utf-8 -*-
 
-from django.contrib.auth.context_processors import PermWrapper
-
 from kfet.config import kfet_config
 
 
-def auth(request):
-    if hasattr(request, 'real_user'):
-        return {
-            'user': request.real_user,
-            'perms': PermWrapper(request.real_user),
-        }
-    return {}
-
-
 def config(request):
     return {'kfet_config': kfet_config}
diff --git a/kfet/forms.py b/kfet/forms.py
index 6ef3aefb..66638e6c 100644
--- a/kfet/forms.py
+++ b/kfet/forms.py
@@ -5,9 +5,8 @@ from decimal import Decimal
 
 from django import forms
 from django.core.exceptions import ValidationError
-from django.contrib.auth.models import User, Group, Permission
-from django.contrib.contenttypes.models import ContentType
-from django.forms import modelformset_factory, widgets
+from django.contrib.auth.models import User
+from django.forms import modelformset_factory
 from django.utils import timezone
 
 from djconfig.forms import ConfigForm
@@ -18,6 +17,8 @@ from kfet.models import (
     TransferGroup, Supplier)
 from gestioncof.models import CofProfile
 
+from .auth.forms import UserGroupForm  # noqa
+
 
 # -----
 # Widgets
@@ -128,60 +129,6 @@ class UserRestrictTeamForm(UserForm):
         fields = ['first_name', 'last_name', 'email']
 
 
-class UserGroupForm(forms.ModelForm):
-    groups = forms.ModelMultipleChoiceField(
-            Group.objects.filter(name__icontains='K-Fêt'),
-            label='Statut équipe',
-            required=False)
-
-    def clean_groups(self):
-        kfet_groups = self.cleaned_data.get('groups')
-        other_groups = self.instance.groups.exclude(name__icontains='K-Fêt')
-        return list(kfet_groups) + list(other_groups)
-
-    class Meta:
-        model = User
-        fields = ['groups']
-
-
-class KFetPermissionsField(forms.ModelMultipleChoiceField):
-
-    def __init__(self, *args, **kwargs):
-        queryset = Permission.objects.filter(
-            content_type__in=ContentType.objects.filter(app_label="kfet"),
-        )
-        super().__init__(
-            queryset=queryset,
-            widget=widgets.CheckboxSelectMultiple,
-            *args, **kwargs
-        )
-
-    def label_from_instance(self, obj):
-        return obj.name
-
-
-class GroupForm(forms.ModelForm):
-    permissions = KFetPermissionsField()
-
-    def clean_name(self):
-        name = self.cleaned_data['name']
-        return 'K-Fêt %s' % name
-
-    def clean_permissions(self):
-        kfet_perms = self.cleaned_data['permissions']
-        # TODO: With Django >=1.11, the QuerySet method 'difference' can be used.
-        # other_groups = self.instance.permissions.difference(
-        #     self.fields['permissions'].queryset
-        # )
-        other_perms = self.instance.permissions.exclude(
-            pk__in=[p.pk for p in self.fields['permissions'].queryset],
-        )
-        return list(kfet_perms) + list(other_perms)
-
-    class Meta:
-        model = Group
-        fields = ['name', 'permissions']
-
 
 class AccountNegativeForm(forms.ModelForm):
     class Meta:
diff --git a/kfet/migrations/0058_delete_genericteamtoken.py b/kfet/migrations/0058_delete_genericteamtoken.py
new file mode 100644
index 00000000..ea8b55cd
--- /dev/null
+++ b/kfet/migrations/0058_delete_genericteamtoken.py
@@ -0,0 +1,17 @@
+# -*- coding: utf-8 -*-
+from __future__ import unicode_literals
+
+from django.db import migrations, models
+
+
+class Migration(migrations.Migration):
+
+    dependencies = [
+        ('kfet', '0057_merge'),
+    ]
+
+    operations = [
+        migrations.DeleteModel(
+            name='GenericTeamToken',
+        ),
+    ]
diff --git a/kfet/models.py b/kfet/models.py
index ec146ad9..b06114d7 100644
--- a/kfet/models.py
+++ b/kfet/models.py
@@ -14,6 +14,8 @@ from datetime import date
 import re
 import hashlib
 
+from .auth.models import GenericTeamToken  # noqa
+
 from .config import kfet_config
 from .utils import to_ukf
 
@@ -710,7 +712,3 @@ class Operation(models.Model):
         return templates[self.type].format(nb=self.article_nb,
                                            article=self.article,
                                            amount=self.amount)
-
-
-class GenericTeamToken(models.Model):
-    token = models.CharField(max_length = 50, unique = True)
diff --git a/kfet/views.py b/kfet/views.py
index c7eb677b..386eddb6 100644
--- a/kfet/views.py
+++ b/kfet/views.py
@@ -12,34 +12,30 @@ from django.views.generic.edit import CreateView, UpdateView
 from django.core.urlresolvers import reverse, reverse_lazy
 from django.contrib import messages
 from django.contrib.messages.views import SuccessMessageMixin
-from django.contrib.auth import authenticate, login
-from django.contrib.auth.decorators import login_required, permission_required
-from django.contrib.auth.models import User, Permission, Group
+from django.contrib.auth.decorators import login_required
+from django.contrib.auth.models import User, Permission
 from django.http import JsonResponse, Http404
 from django.forms import formset_factory
 from django.db import transaction
 from django.db.models import F, Sum, Prefetch, Count
 from django.db.models.functions import Coalesce
 from django.utils import timezone
-from django.utils.crypto import get_random_string
 from django.utils.decorators import method_decorator
 
-from django_cas_ng.views import logout as cas_logout_view
-
 from gestioncof.models import CofProfile
 
 from kfet.config import kfet_config
 from kfet.decorators import teamkfet_required
 from kfet.models import (
     Account, Checkout, Article, AccountNegative,
-    CheckoutStatement, GenericTeamToken, Supplier, SupplierArticle, Inventory,
+    CheckoutStatement, Supplier, SupplierArticle, Inventory,
     InventoryArticle, Order, OrderArticle, Operation, OperationGroup,
     TransferGroup, Transfer, ArticleCategory)
 from kfet.forms import (
     AccountTriForm, AccountBalanceForm, AccountNoTriForm, UserForm, CofForm,
     UserRestrictTeamForm, UserGroupForm, AccountForm, CofRestrictForm,
     AccountPwdForm, AccountNegativeForm, UserRestrictForm, AccountRestrictForm,
-    GroupForm, CheckoutForm, CheckoutRestrictForm, CheckoutStatementCreateForm,
+    CheckoutForm, CheckoutRestrictForm, CheckoutStatementCreateForm,
     CheckoutStatementUpdateForm, ArticleForm, ArticleRestrictForm,
     KPsulOperationGroupForm, KPsulAccountForm, KPsulCheckoutForm,
     KPsulOperationFormSet, AddcostForm, FilterHistoryForm,
@@ -54,25 +50,9 @@ import heapq
 import statistics
 from kfet.statistic import ScaleMixin, last_stats_manifest, tot_ventes, WeekScale
 
-
-@teamkfet_required
-def login_genericteam(request):
-    # Check si besoin de déconnecter l'utilisateur de CAS
-    cas_logout = None
-    if request.user.profile.login_clipper:
-        # Récupèration de la vue de déconnexion de CAS
-        # Ici, car request sera modifié après
-        next_page = request.META.get('HTTP_REFERER', None)
-        cas_logout = cas_logout_view(request, next_page=next_page)
-
-    # Authentification du compte générique
-    token = GenericTeamToken.objects.create(token=get_random_string(50))
-    user = authenticate(username="kfet_genericteam", token=token.token)
-    login(request, user)
-
-    messages.success(request, "Connecté en utilisateur partagé")
-
-    return cas_logout or render(request, "kfet/login_genericteam.html")
+from .auth.views import (  # noqa
+    account_group, login_genericteam, AccountGroupCreate, AccountGroupUpdate,
+)
 
 
 def put_cleaned_data_in_dict(dict, form):
@@ -505,37 +485,6 @@ def account_update(request, trigramme):
     })
 
 
-@permission_required('kfet.manage_perms')
-def account_group(request):
-    user_pre = Prefetch(
-        'user_set',
-        queryset=User.objects.select_related('profile__account_kfet'),
-    )
-    groups = (
-        Group.objects
-        .filter(name__icontains='K-Fêt')
-        .prefetch_related('permissions', user_pre)
-    )
-    return render(request, 'kfet/account_group.html', {
-        'groups': groups,
-    })
-
-
-class AccountGroupCreate(SuccessMessageMixin, CreateView):
-    model = Group
-    template_name = 'kfet/account_group_form.html'
-    form_class = GroupForm
-    success_message = 'Nouveau groupe : %(name)s'
-    success_url = reverse_lazy('kfet.account.group')
-
-class AccountGroupUpdate(SuccessMessageMixin, UpdateView):
-    queryset = Group.objects.filter(name__icontains='K-Fêt')
-    template_name = 'kfet/account_group_form.html'
-    form_class = GroupForm
-    success_message = 'Groupe modifié : %(name)s'
-    success_url = reverse_lazy('kfet.account.group')
-
-
 class AccountNegativeList(ListView):
     queryset = (
         AccountNegative.objects

From 4091185a684a6d01d15f55fa452f3fa39d8ba8e3 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Martin=20P=C3=A9pin?= <martin.pepin@ens.fr>
Date: Wed, 20 Sep 2017 18:19:15 +0200
Subject: [PATCH 012/101] import LDAP_SERVER_URL in settings

---
 cof/settings/common.py | 1 +
 1 file changed, 1 insertion(+)

diff --git a/cof/settings/common.py b/cof/settings/common.py
index ba0b6044..799ecc52 100644
--- a/cof/settings/common.py
+++ b/cof/settings/common.py
@@ -45,6 +45,7 @@ RECAPTCHA_PUBLIC_KEY = import_secret("RECAPTCHA_PUBLIC_KEY")
 RECAPTCHA_PRIVATE_KEY = import_secret("RECAPTCHA_PRIVATE_KEY")
 
 KFETOPEN_TOKEN = import_secret("KFETOPEN_TOKEN")
+LDAP_SERVER_URL = import_secret("LDAP_SERVER_URL")
 
 
 BASE_DIR = os.path.dirname(

From d89ba1efe5fd7878bf4883481e5bbf270f6ecb45 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Martin=20P=C3=A9pin?= <martin.pepin@ens.fr>
Date: Wed, 20 Sep 2017 18:21:59 +0200
Subject: [PATCH 013/101] Fix catalogue behaviour if id=0

---
 bda/views.py | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/bda/views.py b/bda/views.py
index d6da2e9f..84b6c9d3 100644
--- a/bda/views.py
+++ b/bda/views.py
@@ -782,9 +782,9 @@ def catalogue(request, request_type):
             .select_related('location')
             .prefetch_related('quote_set')
         )
-        if categories_id:
+        if categories_id and 0 not in categories_id:
             shows_qs = shows_qs.filter(category__id__in=categories_id)
-        if locations_id:
+        if locations_id and 0 not in locations_id:
             shows_qs = shows_qs.filter(location__id__in=locations_id)
 
         # On convertit les descriptions à envoyer en une liste facilement

From 6f2652c4858b3bc2e20093422388659c38bde02f Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Martin=20P=C3=A9pin?= <martin.pepin@ens.fr>
Date: Wed, 20 Sep 2017 18:23:36 +0200
Subject: [PATCH 014/101] Prod quick hack for Mega export

---
 gestioncof/views.py | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/gestioncof/views.py b/gestioncof/views.py
index c5701510..ec9f6efd 100644
--- a/gestioncof/views.py
+++ b/gestioncof/views.py
@@ -577,7 +577,7 @@ def export_members(request):
     writer = unicodecsv.writer(response)
     for profile in CofProfile.objects.filter(is_cof=True).all():
         user = profile.user
-        bits = [profile.id, user.username, user.first_name, user.last_name,
+        bits = [user.id, user.username, user.first_name, user.last_name,
                 user.email, profile.phone, profile.occupation,
                 profile.departement, profile.type_cotiz]
         writer.writerow([str(bit) for bit in bits])
@@ -596,7 +596,7 @@ def csv_export_mega(filename, qs):
         comments = "---".join(
             [comment.content for comment in reg.comments.all()])
         bits = [user.username, user.first_name, user.last_name, user.email,
-                profile.phone, profile.id,
+                profile.phone, user.id,
                 profile.comments if profile.comments else "", comments]
 
         writer.writerow([str(bit) for bit in bits])

From 1d19d1797c0e3949890c317964eae367e3bb4dc3 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Aur=C3=A9lien=20Delobelle?= <aurelien.delobelle@gmail.com>
Date: Thu, 21 Sep 2017 23:39:27 +0200
Subject: [PATCH 015/101] Clean setup/retrieve of kfet generic account

---
 kfet/auth/__init__.py                  |  3 ++
 kfet/auth/apps.py                      |  5 +++
 kfet/auth/backends.py                  | 20 ++++--------
 kfet/auth/migrations/0001_initial.py   |  3 ++
 kfet/auth/tests.py                     | 16 +++++++++
 kfet/auth/utils.py                     | 28 ++++++++++++++++
 kfet/migrations/0059_create_generic.py | 45 ++++++++++++++++++++++++++
 kfet/models.py                         |  7 ++++
 8 files changed, 113 insertions(+), 14 deletions(-)
 create mode 100644 kfet/auth/utils.py
 create mode 100644 kfet/migrations/0059_create_generic.py

diff --git a/kfet/auth/__init__.py b/kfet/auth/__init__.py
index 63392684..00926030 100644
--- a/kfet/auth/__init__.py
+++ b/kfet/auth/__init__.py
@@ -1 +1,4 @@
 default_app_config = 'kfet.auth.apps.KFetAuthConfig'
+
+KFET_GENERIC_USERNAME = 'kfet_genericteam'
+KFET_GENERIC_TRIGRAMME = 'GNR'
diff --git a/kfet/auth/apps.py b/kfet/auth/apps.py
index ab791d18..03742843 100644
--- a/kfet/auth/apps.py
+++ b/kfet/auth/apps.py
@@ -1,4 +1,5 @@
 from django.apps import AppConfig
+from django.db.models.signals import post_migrate
 from django.utils.translation import ugettext_lazy as _
 
 
@@ -6,3 +7,7 @@ class KFetAuthConfig(AppConfig):
     name = 'kfet.auth'
     label = 'kfetauth'
     verbose_name = _("K-Fêt - Authentification et Autorisation")
+
+    def ready(self):
+        from .utils import setup_kfet_generic_user
+        post_migrate.connect(setup_kfet_generic_user, sender=self)
diff --git a/kfet/auth/backends.py b/kfet/auth/backends.py
index fb9538d0..c972fb55 100644
--- a/kfet/auth/backends.py
+++ b/kfet/auth/backends.py
@@ -2,10 +2,13 @@
 
 import hashlib
 
-from django.contrib.auth.models import User, Permission
-from gestioncof.models import CofProfile
+from django.contrib.auth import get_user_model
 from kfet.models import Account, GenericTeamToken
 
+from .utils import get_kfet_generic_user
+
+User = get_user_model()
+
 
 class KFetBackend(object):
     def authenticate(self, request):
@@ -29,18 +32,7 @@ class GenericTeamBackend(object):
     def authenticate(self, username=None, token=None):
         valid_token = GenericTeamToken.objects.get(token=token)
         if username == 'kfet_genericteam' and valid_token:
-            # Création du user s'il n'existe pas déjà
-            user, _ = User.objects.get_or_create(username='kfet_genericteam')
-            profile, _ = CofProfile.objects.get_or_create(user=user)
-            account, _ = Account.objects.get_or_create(
-                    cofprofile=profile,
-                    trigramme='GNR')
-
-            # Ajoute la permission kfet.is_team à ce user
-            perm_is_team = Permission.objects.get(codename='is_team')
-            user.user_permissions.add(perm_is_team)
-
-            return user
+            return get_kfet_generic_user()
         return None
 
     def get_user(self, user_id):
diff --git a/kfet/auth/migrations/0001_initial.py b/kfet/auth/migrations/0001_initial.py
index 30dfca70..061570a8 100644
--- a/kfet/auth/migrations/0001_initial.py
+++ b/kfet/auth/migrations/0001_initial.py
@@ -8,6 +8,9 @@ class Migration(migrations.Migration):
 
     dependencies = [
         ('auth', '0006_require_contenttypes_0002'),
+        # Following dependency allows using Account model to set up the kfet
+        # generic user in post_migrate receiver.
+        ('kfet', '0058_delete_genericteamtoken'),
     ]
 
     operations = [
diff --git a/kfet/auth/tests.py b/kfet/auth/tests.py
index 7f129a3f..47cc2376 100644
--- a/kfet/auth/tests.py
+++ b/kfet/auth/tests.py
@@ -4,6 +4,10 @@ from django.test import TestCase
 from django.contrib.auth.models import User, Group
 
 from kfet.forms import UserGroupForm
+from kfet.models import Account
+
+from . import KFET_GENERIC_TRIGRAMME, KFET_GENERIC_USERNAME
+from .utils import get_kfet_generic_user
 
 
 class UserGroupFormTests(TestCase):
@@ -54,3 +58,15 @@ class UserGroupFormTests(TestCase):
             [repr(g) for g in [self.other_group] + self.kfet_groups],
             ordered=False,
         )
+
+
+class KFetGenericUserTests(TestCase):
+
+    def test_exists(self):
+        """
+        The account is set up when app is ready, so it should exist.
+        """
+        generic = Account.objects.get_generic()
+        self.assertEqual(generic.trigramme, KFET_GENERIC_TRIGRAMME)
+        self.assertEqual(generic.user.username, KFET_GENERIC_USERNAME)
+        self.assertEqual(get_kfet_generic_user(), generic.user)
diff --git a/kfet/auth/utils.py b/kfet/auth/utils.py
new file mode 100644
index 00000000..78f31028
--- /dev/null
+++ b/kfet/auth/utils.py
@@ -0,0 +1,28 @@
+from django.contrib.auth import get_user_model
+from django.contrib.auth.models import Permission
+
+from kfet.models import Account
+
+User = get_user_model()
+
+
+def get_kfet_generic_user():
+    """
+    Return the user related to the kfet generic account.
+    """
+    return Account.objects.get_generic().user
+
+
+def setup_kfet_generic_user(**kwargs):
+    """
+    First steps of setup of the kfet generic user are done in a migration, as
+    it is more robust against database schema changes.
+    Following steps cannot be done from migration.
+    """
+    generic = get_kfet_generic_user()
+    generic.user_permissions.add(
+        Permission.objects.get(
+            content_type__app_label='kfet',
+            codename='is_team',
+        )
+    )
diff --git a/kfet/migrations/0059_create_generic.py b/kfet/migrations/0059_create_generic.py
new file mode 100644
index 00000000..4f04770c
--- /dev/null
+++ b/kfet/migrations/0059_create_generic.py
@@ -0,0 +1,45 @@
+# -*- coding: utf-8 -*-
+from __future__ import unicode_literals
+
+from django.db import migrations, models
+
+from kfet.auth import KFET_GENERIC_TRIGRAMME, KFET_GENERIC_USERNAME
+
+
+def setup_kfet_generic_user(apps, schema_editor):
+    """
+    Setup models instances for the kfet generic account.
+
+    Username and trigramme are retrieved from kfet.auth.__init__ module.
+    Other data are registered here.
+
+    See also setup_kfet_generic_user from kfet.auth.utils module.
+    """
+    User = apps.get_model('auth', 'User')
+    CofProfile = apps.get_model('gestioncof', 'CofProfile')
+    Account = apps.get_model('kfet', 'Account')
+
+    user, _ = User.objects.update_or_create(
+        username=KFET_GENERIC_USERNAME,
+        defaults={
+            'first_name': 'Compte générique K-Fêt',
+        },
+    )
+    profile, _ = CofProfile.objects.update_or_create(user=user)
+    account, _ = Account.objects.update_or_create(
+        cofprofile=profile,
+        defaults={
+            'trigramme': KFET_GENERIC_TRIGRAMME,
+        },
+    )
+
+
+class Migration(migrations.Migration):
+
+    dependencies = [
+        ('kfet', '0058_delete_genericteamtoken'),
+    ]
+
+    operations = [
+        migrations.RunPython(setup_kfet_generic_user),
+    ]
diff --git a/kfet/models.py b/kfet/models.py
index b06114d7..9aefb782 100644
--- a/kfet/models.py
+++ b/kfet/models.py
@@ -14,6 +14,7 @@ from datetime import date
 import re
 import hashlib
 
+from .auth import KFET_GENERIC_TRIGRAMME
 from .auth.models import GenericTeamToken  # noqa
 
 from .config import kfet_config
@@ -35,6 +36,12 @@ class AccountManager(models.Manager):
         return super().get_queryset().select_related('cofprofile__user',
                                                      'negative')
 
+    def get_generic(self):
+        """
+        Get the kfet generic account instance.
+        """
+        return self.get(trigramme=KFET_GENERIC_TRIGRAMME)
+
 
 class Account(models.Model):
     objects = AccountManager()

From e5d19811e859ba366fe595bbbf345b97df83bb60 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Aur=C3=A9lien=20Delobelle?= <aurelien.delobelle@gmail.com>
Date: Fri, 22 Sep 2017 23:31:46 +0200
Subject: [PATCH 016/101] Clean code related to kfet password

---
 kfet/auth/backends.py     | 10 +---------
 kfet/auth/utils.py        |  6 ++++++
 kfet/models.py            | 19 ++++++++++++++-----
 kfet/tests/test_models.py | 25 +++++++++++++++++++++++++
 4 files changed, 46 insertions(+), 14 deletions(-)
 create mode 100644 kfet/tests/test_models.py

diff --git a/kfet/auth/backends.py b/kfet/auth/backends.py
index c972fb55..1c9290d6 100644
--- a/kfet/auth/backends.py
+++ b/kfet/auth/backends.py
@@ -1,7 +1,4 @@
 # -*- coding: utf-8 -*-
-
-import hashlib
-
 from django.contrib.auth import get_user_model
 from kfet.models import Account, GenericTeamToken
 
@@ -18,12 +15,7 @@ class KFetBackend(object):
             return None
 
         try:
-            password_sha256 = (
-                hashlib.sha256(password.encode('utf-8'))
-                .hexdigest()
-            )
-            account = Account.objects.get(password=password_sha256)
-            return account.cofprofile.user
+            return Account.objects.get_by_password(password).user
         except Account.DoesNotExist:
             return None
 
diff --git a/kfet/auth/utils.py b/kfet/auth/utils.py
index 78f31028..0edc555d 100644
--- a/kfet/auth/utils.py
+++ b/kfet/auth/utils.py
@@ -1,3 +1,5 @@
+import hashlib
+
 from django.contrib.auth import get_user_model
 from django.contrib.auth.models import Permission
 
@@ -26,3 +28,7 @@ def setup_kfet_generic_user(**kwargs):
             codename='is_team',
         )
     )
+
+
+def hash_password(password):
+    return hashlib.sha256(password.encode('utf-8')).hexdigest()
diff --git a/kfet/models.py b/kfet/models.py
index 9aefb782..e547d248 100644
--- a/kfet/models.py
+++ b/kfet/models.py
@@ -12,7 +12,6 @@ from django.db import transaction
 from django.db.models import F
 from datetime import date
 import re
-import hashlib
 
 from .auth import KFET_GENERIC_TRIGRAMME
 from .auth.models import GenericTeamToken  # noqa
@@ -42,6 +41,17 @@ class AccountManager(models.Manager):
         """
         return self.get(trigramme=KFET_GENERIC_TRIGRAMME)
 
+    def get_by_password(self, password):
+        """
+        Get a kfet generic account by clear password.
+
+        Raises Account.DoesNotExist if no Account has this password.
+        """
+        from .auth.utils import hash_password
+        if password is None:
+            raise self.model.DoesNotExist
+        return self.get(password=hash_password(password))
+
 
 class Account(models.Model):
     objects = AccountManager()
@@ -245,10 +255,9 @@ class Account(models.Model):
             self.cofprofile = cof
         super(Account, self).save(*args, **kwargs)
 
-    def change_pwd(self, pwd):
-        pwd_sha256 = hashlib.sha256(pwd.encode('utf-8'))\
-                            .hexdigest()
-        self.password = pwd_sha256
+    def change_pwd(self, clear_password):
+        from .auth.utils import hash_password
+        self.password = hash_password(clear_password)
 
     # Surcharge de delete
     # Pas de suppression possible
diff --git a/kfet/tests/test_models.py b/kfet/tests/test_models.py
new file mode 100644
index 00000000..ea132acd
--- /dev/null
+++ b/kfet/tests/test_models.py
@@ -0,0 +1,25 @@
+from django.contrib.auth import get_user_model
+from django.test import TestCase
+
+from kfet.models import Account
+
+User = get_user_model()
+
+
+class AccountTests(TestCase):
+
+    def setUp(self):
+        self.account = Account(trigramme='000')
+        self.account.save({'username': 'user'})
+
+    def test_password(self):
+        self.account.change_pwd('anna')
+        self.account.save()
+
+        self.assertEqual(Account.objects.get_by_password('anna'), self.account)
+
+        with self.assertRaises(Account.DoesNotExist):
+            Account.objects.get_by_password(None)
+
+        with self.assertRaises(Account.DoesNotExist):
+            Account.objects.get_by_password('bernard')

From 3fa7754ff4d31e300e9241d8a2122340a3a8de89 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Aur=C3=A9lien=20Delobelle?= <aurelien.delobelle@gmail.com>
Date: Sat, 23 Sep 2017 20:48:28 +0200
Subject: [PATCH 017/101] KFet Backends inherit from BaseKFetBackend

Users who authenticate via a KFetBackend got extra select related.
It should save 2 db queries on each request for these users.
---
 kfet/auth/backends.py | 19 +++++++++++++++++--
 1 file changed, 17 insertions(+), 2 deletions(-)

diff --git a/kfet/auth/backends.py b/kfet/auth/backends.py
index 1c9290d6..b2f1cb03 100644
--- a/kfet/auth/backends.py
+++ b/kfet/auth/backends.py
@@ -7,7 +7,22 @@ from .utils import get_kfet_generic_user
 User = get_user_model()
 
 
-class KFetBackend(object):
+class BaseKFetBackend:
+    def get_user(self, user_id):
+        """
+        Add extra select related up to Account.
+        """
+        try:
+            return (
+                User.objects
+                .select_related('profile__account_kfet')
+                .get(pk=user_id)
+            )
+        except User.DoesNotExist:
+            return None
+
+
+class KFetBackend(BaseKFetBackend):
     def authenticate(self, request):
         password = request.POST.get('KFETPASSWORD', '')
         password = request.META.get('HTTP_KFETPASSWORD', password)
@@ -20,7 +35,7 @@ class KFetBackend(object):
             return None
 
 
-class GenericTeamBackend(object):
+class GenericTeamBackend(BaseKFetBackend):
     def authenticate(self, username=None, token=None):
         valid_token = GenericTeamToken.objects.get(token=token)
         if username == 'kfet_genericteam' and valid_token:

From db512a97f6a8086c7d25d45e0d5fbca8eebe1d62 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Martin=20P=C3=A9pin?= <martin.pepin@ens.fr>
Date: Mon, 25 Sep 2017 14:22:46 +0200
Subject: [PATCH 018/101] In /admin: displays "given" when it's relevant

---
 bda/admin.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/bda/admin.py b/bda/admin.py
index 0cc66d43..83c89ea5 100644
--- a/bda/admin.py
+++ b/bda/admin.py
@@ -61,12 +61,12 @@ class AttributionInline(admin.TabularInline):
 
 
 class WithListingAttributionInline(AttributionInline):
+    exclude = ('given', )
     form = WithListingAttributionTabularAdminForm
     listing = True
 
 
 class WithoutListingAttributionInline(AttributionInline):
-    exclude = ('given', )
     form = WithoutListingAttributionTabularAdminForm
     listing = False
 

From b42452080f36d2a669b19c5c93ea9194a2703afe Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Aur=C3=A9lien=20Delobelle?= <aurelien.delobelle@gmail.com>
Date: Mon, 25 Sep 2017 17:16:19 +0200
Subject: [PATCH 019/101] Mass cleaning of kfet' authentication machinery

AccountBackend
- Should now work if used in AUTHENTICATION_BACKENDS settings.
- It does not retieve itself the password, as it should not be used
this way.

GenericBackend
- Delete useless 'username' arg of its 'authenticate()' method.
- Now delete the token in DB.

TemporaryAuthMiddleware
- New name of the middleware is more meaningful.
- Is now responsible to retrieve the password from the request, instead
of the AccountBackend.

GenericTeamToken model
- Add a manager' method to create token, avoiding possible error due to
unicity constraint.

GenericLoginView (authentication with the kfet generic user)
- Replace obscure system with a 100% HTTP handling.
- See comments for more information.

Misc
- More docstrings!
- More tests!
- Add some i18n.
- Add kfet/confirm_form.html template:
    Ask user to confirm sth via a form (which will send a POST request).
    Context variables:
        * title: the page title
        * confirm_url: action attribute for <form>
        * text: displayed confirmation text
- kfet.js : Add functions allowing to emit POST request from <a> tag.
- Non-link nav items from kfet navbar also get a 'title'.
- A utility has been found for the 'sunglasses' glyphicon!
---
 cof/settings/common.py                        |   6 +-
 kfet/apps.py                                  |   1 -
 kfet/auth/apps.py                             |   1 +
 kfet/auth/backends.py                         |  36 +--
 kfet/auth/context_processors.py               |   2 +-
 kfet/auth/middleware.py                       |  25 +-
 kfet/auth/models.py                           |  12 +
 kfet/auth/signals.py                          |  40 +++
 .../templates/kfet/login_genericteam.html     |   7 -
 kfet/auth/tests.py                            | 299 +++++++++++++++++-
 kfet/auth/views.py                            | 111 +++++--
 kfet/signals.py                               |  21 --
 kfet/static/kfet/js/kfet.js                   |  66 +++-
 kfet/templates/kfet/base_nav.html             |  21 +-
 kfet/templates/kfet/confirm_form.html         |  20 ++
 kfet/templates/kfet/nav_item.html             |   4 +
 kfet/urls.py                                  |   4 +-
 kfet/views.py                                 |   2 +-
 18 files changed, 559 insertions(+), 119 deletions(-)
 create mode 100644 kfet/auth/signals.py
 delete mode 100644 kfet/auth/templates/kfet/login_genericteam.html
 delete mode 100644 kfet/signals.py
 create mode 100644 kfet/templates/kfet/confirm_form.html

diff --git a/cof/settings/common.py b/cof/settings/common.py
index 92759d21..0437f5db 100644
--- a/cof/settings/common.py
+++ b/cof/settings/common.py
@@ -100,7 +100,7 @@ MIDDLEWARE_CLASSES = [
     'django.middleware.csrf.CsrfViewMiddleware',
     'django.contrib.auth.middleware.AuthenticationMiddleware',
     'django.contrib.auth.middleware.SessionAuthenticationMiddleware',
-    'kfet.auth.middleware.KFetAuthenticationMiddleware',
+    'kfet.auth.middleware.TemporaryAuthMiddleware',
     'django.contrib.messages.middleware.MessageMiddleware',
     'django.middleware.clickjacking.XFrameOptionsMiddleware',
     'django.middleware.security.SecurityMiddleware',
@@ -128,7 +128,7 @@ TEMPLATES = [
                 'wagtailmenus.context_processors.wagtailmenus',
                 'djconfig.context_processors.config',
                 'gestioncof.shared.context_processor',
-                'kfet.auth.context_processors.auth',
+                'kfet.auth.context_processors.temporary_auth',
                 'kfet.context_processors.config',
             ],
         },
@@ -191,7 +191,7 @@ CAS_EMAIL_FORMAT = "%s@clipper.ens.fr"
 AUTHENTICATION_BACKENDS = (
     'django.contrib.auth.backends.ModelBackend',
     'gestioncof.shared.COFCASBackend',
-    'kfet.auth.backends.GenericTeamBackend',
+    'kfet.auth.backends.GenericBackend',
 )
 
 RECAPTCHA_USE_SSL = True
diff --git a/kfet/apps.py b/kfet/apps.py
index 3dd2c0e8..4f114c37 100644
--- a/kfet/apps.py
+++ b/kfet/apps.py
@@ -11,7 +11,6 @@ class KFetConfig(AppConfig):
     verbose_name = "Application K-Fêt"
 
     def ready(self):
-        import kfet.signals
         self.register_config()
 
     def register_config(self):
diff --git a/kfet/auth/apps.py b/kfet/auth/apps.py
index 03742843..d91931f5 100644
--- a/kfet/auth/apps.py
+++ b/kfet/auth/apps.py
@@ -9,5 +9,6 @@ class KFetAuthConfig(AppConfig):
     verbose_name = _("K-Fêt - Authentification et Autorisation")
 
     def ready(self):
+        from . import signals  # noqa
         from .utils import setup_kfet_generic_user
         post_migrate.connect(setup_kfet_generic_user, sender=self)
diff --git a/kfet/auth/backends.py b/kfet/auth/backends.py
index b2f1cb03..c6ad21b2 100644
--- a/kfet/auth/backends.py
+++ b/kfet/auth/backends.py
@@ -22,32 +22,22 @@ class BaseKFetBackend:
             return None
 
 
-class KFetBackend(BaseKFetBackend):
-    def authenticate(self, request):
-        password = request.POST.get('KFETPASSWORD', '')
-        password = request.META.get('HTTP_KFETPASSWORD', password)
-        if not password:
-            return None
-
+class AccountBackend(BaseKFetBackend):
+    def authenticate(self, request, kfet_password=None):
         try:
-            return Account.objects.get_by_password(password).user
+            return Account.objects.get_by_password(kfet_password).user
         except Account.DoesNotExist:
             return None
 
 
-class GenericTeamBackend(BaseKFetBackend):
-    def authenticate(self, username=None, token=None):
-        valid_token = GenericTeamToken.objects.get(token=token)
-        if username == 'kfet_genericteam' and valid_token:
-            return get_kfet_generic_user()
-        return None
-
-    def get_user(self, user_id):
+class GenericBackend(BaseKFetBackend):
+    def authenticate(self, request, kfet_token=None):
         try:
-            return (
-                User.objects
-                .select_related('profile__account_kfet')
-                .get(pk=user_id)
-            )
-        except User.DoesNotExist:
-            return None
+            team_token = GenericTeamToken.objects.get(token=kfet_token)
+        except GenericTeamToken.DoesNotExist:
+            return
+
+        # No need to keep the token.
+        team_token.delete()
+
+        return get_kfet_generic_user()
diff --git a/kfet/auth/context_processors.py b/kfet/auth/context_processors.py
index 07c9537f..7b59b88b 100644
--- a/kfet/auth/context_processors.py
+++ b/kfet/auth/context_processors.py
@@ -1,7 +1,7 @@
 from django.contrib.auth.context_processors import PermWrapper
 
 
-def auth(request):
+def temporary_auth(request):
     if hasattr(request, 'real_user'):
         return {
             'user': request.real_user,
diff --git a/kfet/auth/middleware.py b/kfet/auth/middleware.py
index 1a930c3b..748ce4dd 100644
--- a/kfet/auth/middleware.py
+++ b/kfet/auth/middleware.py
@@ -1,12 +1,13 @@
 # -*- coding: utf-8 -*-
+from django.contrib.auth import get_user_model
 
-from django.contrib.auth.models import User
+from .backends import AccountBackend
 
-from .backends import KFetBackend
+User = get_user_model()
 
 
-class KFetAuthenticationMiddleware(object):
-    """Authenticate another user for this request if KFetBackend succeeds.
+class TemporaryAuthMiddleware:
+    """Authenticate another user for this request if AccountBackend succeeds.
 
     By the way, if a user is authenticated, we refresh its from db to add
     values from CofProfile and Account of this user.
@@ -15,15 +16,23 @@ class KFetAuthenticationMiddleware(object):
     def process_request(self, request):
         if request.user.is_authenticated():
             # avoid multiple db accesses in views and templates
-            user_pk = request.user.pk
             request.user = (
                 User.objects
                 .select_related('profile__account_kfet')
-                .get(pk=user_pk)
+                .get(pk=request.user.pk)
             )
 
-        kfet_backend = KFetBackend()
-        temp_request_user = kfet_backend.authenticate(request)
+        temp_request_user = AccountBackend().authenticate(
+            request,
+            kfet_password=self.get_kfet_password(request),
+        )
+
         if temp_request_user:
             request.real_user = request.user
             request.user = temp_request_user
+
+    def get_kfet_password(self, request):
+        return (
+            request.META.get('HTTP_KFETPASSWORD') or
+            request.POST.get('KFETPASSWORD')
+        )
diff --git a/kfet/auth/models.py b/kfet/auth/models.py
index 53aef6c9..ecd40091 100644
--- a/kfet/auth/models.py
+++ b/kfet/auth/models.py
@@ -1,5 +1,17 @@
 from django.db import models
+from django.utils.crypto import get_random_string
+
+
+class GenericTeamTokenManager(models.Manager):
+
+    def create_token(self):
+        token = get_random_string(50)
+        while self.filter(token=token).exists():
+            token = get_random_string(50)
+        return self.create(token=token)
 
 
 class GenericTeamToken(models.Model):
     token = models.CharField(max_length=50, unique=True)
+
+    objects = GenericTeamTokenManager()
diff --git a/kfet/auth/signals.py b/kfet/auth/signals.py
new file mode 100644
index 00000000..3d7af18b
--- /dev/null
+++ b/kfet/auth/signals.py
@@ -0,0 +1,40 @@
+from django.contrib import messages
+from django.contrib.auth.signals import user_logged_in
+from django.core.urlresolvers import reverse
+from django.dispatch import receiver
+from django.utils.safestring import mark_safe
+from django.utils.translation import ugettext as _
+
+from .utils import get_kfet_generic_user
+
+
+@receiver(user_logged_in)
+def suggest_auth_generic(sender, request, user, **kwargs):
+    """
+    Suggest logged in user to continue as the kfet generic user.
+
+    Message is only added if the following conditions are met:
+    - the next page (where user is going to be redirected due to successful
+        authentication) is related to kfet, i.e. 'k-fet' is in its url.
+    - logged in user is a kfet staff member (except the generic user).
+    """
+    # Filter against the next page.
+    if not(hasattr(request, 'GET') and 'next' in request.GET):
+        return
+
+    next_page = request.GET['next']
+    generic_url = reverse('kfet.login.generic')
+
+    if not('k-fet' in next_page and not next_page.startswith(generic_url)):
+        return
+
+    # Filter against the logged in user.
+    if not(user.has_perm('kfet.is_team') and user != get_kfet_generic_user()):
+        return
+
+    # Seems legit to add message.
+    text = _("K-Fêt — Ouvrir une session partagée ?")
+    messages.info(request, mark_safe(
+        '<a href="#" data-url="{}" onclick="submit_url(this)">{}</a>'
+        .format(generic_url, text)
+    ))
diff --git a/kfet/auth/templates/kfet/login_genericteam.html b/kfet/auth/templates/kfet/login_genericteam.html
deleted file mode 100644
index d2f8eca0..00000000
--- a/kfet/auth/templates/kfet/login_genericteam.html
+++ /dev/null
@@ -1,7 +0,0 @@
-{% extends 'kfet/base.html' %}
-
-{% block extra_head %}
-<script type="text/javascript">
-    close();
-</script>
-{% endblock %}
diff --git a/kfet/auth/tests.py b/kfet/auth/tests.py
index 47cc2376..c2f183cd 100644
--- a/kfet/auth/tests.py
+++ b/kfet/auth/tests.py
@@ -1,15 +1,26 @@
 # -*- coding: utf-8 -*-
+from unittest import mock
 
-from django.test import TestCase
-from django.contrib.auth.models import User, Group
+from django.core import signing
+from django.core.urlresolvers import reverse
+from django.contrib.auth.models import AnonymousUser, Group, Permission, User
+from django.test import RequestFactory, TestCase
 
 from kfet.forms import UserGroupForm
 from kfet.models import Account
 
 from . import KFET_GENERIC_TRIGRAMME, KFET_GENERIC_USERNAME
+from .backends import AccountBackend, GenericBackend
+from .middleware import TemporaryAuthMiddleware
+from .models import GenericTeamToken
 from .utils import get_kfet_generic_user
+from .views import GenericLoginView
 
 
+##
+# Forms
+##
+
 class UserGroupFormTests(TestCase):
     """Test suite for UserGroupForm."""
 
@@ -70,3 +81,287 @@ class KFetGenericUserTests(TestCase):
         self.assertEqual(generic.trigramme, KFET_GENERIC_TRIGRAMME)
         self.assertEqual(generic.user.username, KFET_GENERIC_USERNAME)
         self.assertEqual(get_kfet_generic_user(), generic.user)
+
+
+##
+# Backends
+##
+
+class AccountBackendTests(TestCase):
+
+    def setUp(self):
+        self.request = RequestFactory().get('/')
+
+    def test_valid(self):
+        acc = Account(trigramme='000')
+        acc.change_pwd('valid')
+        acc.save({'username': 'user'})
+
+        auth = AccountBackend().authenticate(
+            self.request, kfet_password='valid')
+
+        self.assertEqual(auth, acc.user)
+
+    def test_invalid(self):
+        auth = AccountBackend().authenticate(
+            self.request, kfet_password='invalid')
+        self.assertIsNone(auth)
+
+
+class GenericBackendTests(TestCase):
+
+    def setUp(self):
+        self.request = RequestFactory().get('/')
+
+    def test_valid(self):
+        token = GenericTeamToken.objects.create_token()
+
+        auth = GenericBackend().authenticate(
+            self.request, kfet_token=token.token)
+
+        self.assertEqual(auth, get_kfet_generic_user())
+        self.assertEqual(GenericTeamToken.objects.all().count(), 0)
+
+    def test_invalid(self):
+        auth = GenericBackend().authenticate(
+            self.request, kfet_token='invalid')
+        self.assertIsNone(auth)
+
+
+##
+# Views
+##
+
+class GenericLoginViewTests(TestCase):
+
+    def setUp(self):
+        patcher_messages = mock.patch('gestioncof.signals.messages')
+        patcher_messages.start()
+        self.addCleanup(patcher_messages.stop)
+
+        user_acc = Account(trigramme='000')
+        user_acc.save({'username': 'user'})
+        self.user = user_acc.user
+        self.user.set_password('user')
+        self.user.save()
+
+        team_acc = Account(trigramme='100')
+        team_acc.save({'username': 'team'})
+        self.team = team_acc.user
+        self.team.set_password('team')
+        self.team.save()
+        self.team.user_permissions.add(
+            Permission.objects.get(
+                content_type__app_label='kfet', codename='is_team'),
+        )
+
+        self.url = reverse('kfet.login.generic')
+        self.generic_user = get_kfet_generic_user()
+
+    def test_url(self):
+        self.assertEqual(self.url, '/k-fet/login/generic')
+
+    def test_notoken_get(self):
+        """
+        Send confirmation for user to emit POST request, instead of GET.
+        """
+        self.client.login(username='team', password='team')
+
+        r = self.client.get(self.url)
+
+        self.assertEqual(r.status_code, 200)
+        self.assertTemplateUsed(r, 'kfet/confirm_form.html')
+
+    def test_notoken_post(self):
+        """
+        POST request without token in COOKIES sets a token and redirects to
+        logout url.
+        """
+        self.client.login(username='team', password='team')
+
+        r = self.client.post(self.url)
+
+        self.assertRedirects(
+            r, '/logout?next={}'.format(self.url),
+            fetch_redirect_response=False,
+        )
+
+    def test_notoken_not_team(self):
+        """
+        Logged in user must be a team user to initiate login as generic user.
+        """
+        self.client.login(username='user', password='user')
+
+        # With GET.
+        r = self.client.get(self.url)
+        self.assertRedirects(
+            r, '/login?next={}'.format(self.url),
+            fetch_redirect_response=False,
+        )
+
+        # Also with POST.
+        r = self.client.post(self.url)
+        self.assertRedirects(
+            r, '/login?next={}'.format(self.url),
+            fetch_redirect_response=False,
+        )
+
+    def _set_signed_cookie(self, client, key, value):
+        signed_value = signing.get_cookie_signer(salt=key).sign(value)
+        client.cookies.load({key: signed_value})
+
+    def _is_cookie_deleted(self, client, key):
+        try:
+            self.assertNotIn(key, client.cookies)
+        except AssertionError:
+            try:
+                cookie = client.cookies[key]
+                # It also can be emptied.
+                self.assertEqual(cookie.value, '')
+                self.assertEqual(
+                    cookie['expires'], 'Thu, 01-Jan-1970 00:00:00 GMT')
+                self.assertEqual(cookie['max-age'], 0)
+            except AssertionError:
+                raise AssertionError("The cookie '%s' still exists." % key)
+
+    def test_withtoken_valid(self):
+        """
+        The kfet generic user is logged in.
+        """
+        token = GenericTeamToken.objects.create(token='valid')
+        self._set_signed_cookie(
+            self.client, GenericLoginView.TOKEN_COOKIE_NAME, 'valid')
+
+        r = self.client.get(self.url)
+
+        self.assertRedirects(r, reverse('kfet.kpsul'))
+        self.assertEqual(r.wsgi_request.user, self.generic_user)
+        self._is_cookie_deleted(
+            self.client, GenericLoginView.TOKEN_COOKIE_NAME)
+        with self.assertRaises(GenericTeamToken.DoesNotExist):
+            token.refresh_from_db()
+
+    def test_withtoken_invalid(self):
+        """
+        If token is invalid, delete it and try again.
+        """
+        self._set_signed_cookie(
+            self.client, GenericLoginView.TOKEN_COOKIE_NAME, 'invalid')
+
+        r = self.client.get(self.url)
+
+        self.assertRedirects(r, self.url, fetch_redirect_response=False)
+        self.assertEqual(r.wsgi_request.user, AnonymousUser())
+        self._is_cookie_deleted(
+            self.client, GenericLoginView.TOKEN_COOKIE_NAME)
+
+    def test_flow_ok(self):
+        """
+        A team user is logged in as the kfet generic user.
+        """
+        self.client.login(username='team', password='team')
+        next_url = '/k-fet/'
+
+        r = self.client.post(
+            '{}?next={}'.format(self.url, next_url), follow=True)
+
+        self.assertEqual(r.wsgi_request.user, self.generic_user)
+        self.assertEqual(r.wsgi_request.path, '/k-fet/')
+
+
+##
+# Temporary authentication
+#
+# Includes:
+#   - TemporaryAuthMiddleware
+#   - temporary_auth context processor
+##
+
+class TemporaryAuthTests(TestCase):
+
+    def setUp(self):
+        patcher_messages = mock.patch('gestioncof.signals.messages')
+        patcher_messages.start()
+        self.addCleanup(patcher_messages.stop)
+
+        self.factory = RequestFactory()
+
+        user1_acc = Account(trigramme='000')
+        user1_acc.change_pwd('kfet_user1')
+        user1_acc.save({'username': 'user1'})
+        self.user1 = user1_acc.user
+        self.user1.set_password('user1')
+        self.user1.save()
+
+        user2_acc = Account(trigramme='100')
+        user2_acc.change_pwd('kfet_user2')
+        user2_acc.save({'username': 'user2'})
+        self.user2 = user2_acc.user
+        self.user2.set_password('user2')
+        self.user2.save()
+
+        self.perm = Permission.objects.get(
+            content_type__app_label='kfet', codename='is_team')
+        self.user2.user_permissions.add(self.perm)
+
+    def test_middleware_header(self):
+        """
+        A user can be authenticated if ``HTTP_KFETPASSWORD`` header of a
+        request contains a valid kfet password.
+        """
+        request = self.factory.get('/', HTTP_KFETPASSWORD='kfet_user2')
+        request.user = self.user1
+
+        TemporaryAuthMiddleware().process_request(request)
+
+        self.assertEqual(request.user, self.user2)
+        self.assertEqual(request.real_user, self.user1)
+
+    def test_middleware_post(self):
+        """
+        A user can be authenticated if ``KFETPASSWORD`` of POST data contains
+        a valid kfet password.
+        """
+        request = self.factory.post('/', {'KFETPASSWORD': 'kfet_user2'})
+        request.user = self.user1
+
+        TemporaryAuthMiddleware().process_request(request)
+
+        self.assertEqual(request.user, self.user2)
+        self.assertEqual(request.real_user, self.user1)
+
+    def test_middleware_invalid(self):
+        """
+        The given password must be a password of an Account.
+        """
+        request = self.factory.post('/', {'KFETPASSWORD': 'invalid'})
+        request.user = self.user1
+
+        TemporaryAuthMiddleware().process_request(request)
+
+        self.assertEqual(request.user, self.user1)
+        self.assertFalse(hasattr(request, 'real_user'))
+
+    def test_context_processor(self):
+        """
+        Context variables give the real authenticated user and his permissions.
+        """
+        self.client.login(username='user1', password='user1')
+
+        r = self.client.get('/k-fet/accounts/', HTTP_KFETPASSWORD='kfet_user2')
+
+        self.assertEqual(r.context['user'], self.user1)
+        self.assertNotIn('kfet.is_team', r.context['perms'])
+
+    def test_auth_not_persistent(self):
+        """
+        The authentication is temporary, i.e. for one request.
+        """
+        self.client.login(username='user1', password='user1')
+
+        r1 = self.client.get(
+            '/k-fet/accounts/', HTTP_KFETPASSWORD='kfet_user2')
+        self.assertEqual(r1.wsgi_request.user, self.user2)
+
+        r2 = self.client.get('/k-fet/accounts/')
+        self.assertEqual(r2.wsgi_request.user, self.user1)
diff --git a/kfet/auth/views.py b/kfet/auth/views.py
index ce44b007..7b9f4099 100644
--- a/kfet/auth/views.py
+++ b/kfet/auth/views.py
@@ -3,38 +3,105 @@ from django.contrib.messages.views import SuccessMessageMixin
 from django.contrib.auth import authenticate, login
 from django.contrib.auth.decorators import permission_required
 from django.contrib.auth.models import Group, User
-from django.core.urlresolvers import reverse_lazy
+from django.contrib.auth.views import redirect_to_login
+from django.core.urlresolvers import reverse, reverse_lazy
 from django.db.models import Prefetch
-from django.shortcuts import render
-from django.utils.crypto import get_random_string
+from django.http import QueryDict
+from django.shortcuts import redirect, render
+from django.utils.decorators import method_decorator
+from django.utils.translation import ugettext_lazy as _
+from django.views.generic import View
+from django.views.decorators.http import require_http_methods
 from django.views.generic.edit import CreateView, UpdateView
 
-from django_cas_ng.views import logout as cas_logout_view
-
-from kfet.decorators import teamkfet_required
-
 from .forms import GroupForm
 from .models import GenericTeamToken
 
 
-@teamkfet_required
-def login_genericteam(request):
-    # Check si besoin de déconnecter l'utilisateur de CAS
-    cas_logout = None
-    if request.user.profile.login_clipper:
-        # Récupèration de la vue de déconnexion de CAS
-        # Ici, car request sera modifié après
-        next_page = request.META.get('HTTP_REFERER', None)
-        cas_logout = cas_logout_view(request, next_page=next_page)
+class GenericLoginView(View):
+    """
+    View to authenticate as kfet generic user.
 
-    # Authentification du compte générique
-    token = GenericTeamToken.objects.create(token=get_random_string(50))
-    user = authenticate(username="kfet_genericteam", token=token.token)
-    login(request, user)
+    It is a 2-step view. First, issue a token if user is a team member and send
+    him to the logout view (for proper disconnect) with callback url to here.
+    Then authenticate the token to log in as the kfet generic user.
 
-    messages.success(request, "Connecté en utilisateur partagé")
+    Token is stored in COOKIES to avoid share it with the authentication
+    provider, which can be external. Session is unusable as it will be cleared
+    on logout.
+    """
+    TOKEN_COOKIE_NAME = 'kfettoken'
 
-    return cas_logout or render(request, "kfet/login_genericteam.html")
+    @method_decorator(require_http_methods(['GET', 'POST']))
+    def dispatch(self, request, *args, **kwargs):
+        token = request.get_signed_cookie(self.TOKEN_COOKIE_NAME, None)
+        if not token:
+            if not request.user.has_perm('kfet.is_team'):
+                return redirect_to_login(request.get_full_path())
+
+            if request.method == 'POST':
+                # Step 1: set token and logout user.
+                return self.prepare_auth()
+            else:
+                # GET request should not change server/client states. Send a
+                # confirmation template to emit a POST request.
+                return render(request, 'kfet/confirm_form.html', {
+                    'title': _("Ouvrir une session partagée"),
+                    'text': _(
+                        "Êtes-vous sûr·e de vouloir ouvrir une session "
+                        "partagée ?"
+                    ),
+                })
+        else:
+            # Step 2: validate token.
+            return self.validate_auth(token)
+
+    def prepare_auth(self):
+        # Issue token.
+        token = GenericTeamToken.objects.create_token()
+
+        # Prepare callback of logout.
+        here_url = reverse(login_generic)
+        if 'next' in self.request.GET:
+            # Keep given next page.
+            here_qd = QueryDict(mutable=True)
+            here_qd['next'] = self.request.GET['next']
+            here_url += '?{}'.format(here_qd.urlencode())
+
+        logout_url = reverse('cof-logout')
+        logout_qd = QueryDict(mutable=True)
+        logout_qd['next'] = here_url
+        logout_url += '?{}'.format(logout_qd.urlencode(safe='/'))
+
+        resp = redirect(logout_url)
+        resp.set_signed_cookie(
+            self.TOKEN_COOKIE_NAME, token.token, httponly=True)
+        return resp
+
+    def validate_auth(self, token):
+        # Authenticate with GenericBackend.
+        user = authenticate(request=self.request, kfet_token=token)
+
+        if user:
+            # Log in generic user.
+            login(self.request, user)
+            messages.success(self.request, _(
+                "K-Fêt — Ouverture d'une session partagée."
+            ))
+            resp = redirect(self.get_next_url())
+        else:
+            # Try again.
+            resp = redirect(self.request.get_full_path())
+
+        # Prevents blocking due to an invalid COOKIE.
+        resp.delete_cookie(self.TOKEN_COOKIE_NAME)
+        return resp
+
+    def get_next_url(self):
+        return self.request.GET.get('next', reverse('kfet.kpsul'))
+
+
+login_generic = GenericLoginView.as_view()
 
 
 @permission_required('kfet.manage_perms')
diff --git a/kfet/signals.py b/kfet/signals.py
deleted file mode 100644
index c677ac9c..00000000
--- a/kfet/signals.py
+++ /dev/null
@@ -1,21 +0,0 @@
-# -*- coding: utf-8 -*-
-
-from django.contrib import messages
-from django.contrib.auth.signals import user_logged_in
-from django.core.urlresolvers import reverse
-from django.dispatch import receiver
-from django.utils.safestring import mark_safe
-
-
-@receiver(user_logged_in)
-def messages_on_login(sender, request, user, **kwargs):
-    if (not user.username == 'kfet_genericteam' and
-            user.has_perm('kfet.is_team') and
-            hasattr(request, 'GET') and
-            'k-fet' in request.GET.get('next', '')):
-        messages.info(request, mark_safe(
-            '<a href="{}" class="genericteam" target="_blank">'
-            '  Connexion en utilisateur partagé ?'
-            '</a>'
-            .format(reverse('kfet.login.genericteam'))
-        ))
diff --git a/kfet/static/kfet/js/kfet.js b/kfet/static/kfet/js/kfet.js
index b34f2005..75b80b04 100644
--- a/kfet/static/kfet/js/kfet.js
+++ b/kfet/static/kfet/js/kfet.js
@@ -1,22 +1,33 @@
-$(document).ready(function() {
-    if (typeof Cookies !== 'undefined') {
-        // Retrieving csrf token
-        csrftoken = Cookies.get('csrftoken');
-        // Appending csrf token to ajax post requests
-        function csrfSafeMethod(method) {
-            // these HTTP methods do not require CSRF protection
-            return (/^(GET|HEAD|OPTIONS|TRACE)$/.test(method));
+/**
+ * CSRF Token
+ */
+
+var csrftoken = '';
+if (typeof Cookies !== 'undefined')
+    csrftoken = Cookies.get('csrftoken');
+
+// Add CSRF token in header of AJAX requests.
+
+function csrfSafeMethod(method) {
+    // these HTTP methods do not require CSRF protection
+    return (/^(GET|HEAD|OPTIONS|TRACE)$/.test(method));
+}
+
+$.ajaxSetup({
+    beforeSend: function(xhr, settings) {
+        if (!csrfSafeMethod(settings.type) && !this.crossDomain) {
+            xhr.setRequestHeader("X-CSRFToken", csrftoken);
         }
-        $.ajaxSetup({
-            beforeSend: function(xhr, settings) {
-                if (!csrfSafeMethod(settings.type) && !this.crossDomain) {
-                    xhr.setRequestHeader("X-CSRFToken", csrftoken);
-                }
-            }
-        });
     }
 });
 
+function add_csrf_form($form) {
+    $form.append(
+        $('<input>', {'name': 'csrfmiddlewaretoken', 'value': csrftoken})
+    );
+}
+
+
 /*
  * Generic Websocket class and k-psul ws instanciation
  */
@@ -199,3 +210,28 @@ jconfirm.defaults = {
     confirmButton: '<span class="glyphicon glyphicon-ok"></span>',
     cancelButton: '<span class="glyphicon glyphicon-remove"></span>'
 };
+
+
+/**
+ * Create form node, given an url used as 'action', with csrftoken set.
+ */
+function create_form(url) {
+    let $form = $('<form>', {
+        'action': url,
+        'method': 'post',
+    });
+    add_csrf_form($form);
+    return $form;
+}
+
+
+/**
+ * Emit a POST request from <a> tag.
+ *
+ * Usage:
+ *  <a href="#" data-url="{target url}" onclick="submit_url(this)">{…}</a>
+ */
+function submit_url(el) {
+    let url = $(el).data('url');
+    create_form(url).appendTo($('body')).submit();
+}
diff --git a/kfet/templates/kfet/base_nav.html b/kfet/templates/kfet/base_nav.html
index abcb8e18..dda6c1ef 100644
--- a/kfet/templates/kfet/base_nav.html
+++ b/kfet/templates/kfet/base_nav.html
@@ -1,4 +1,4 @@
-{% load static %}
+{% load i18n static %}
 {% load wagtailcore_tags %}
 
 <nav class="navbar navbar-fixed-top">
@@ -62,7 +62,8 @@
     </ul>
     <ul class="nav navbar-nav navbar-right nav-app">
       {% if user.username == 'kfet_genericteam' %}
-        {% include "kfet/nav_item.html" with text="Équipe standard" %}
+        {% trans "Session partagée" as shared_str %}
+        {% include "kfet/nav_item.html" with text=shared_str glyphicon="sunglasses" %}
       {% elif user.is_authenticated and not user.profile.account_kfet %}
         {% include "kfet/nav_item.html" with class="disabled" href="#" glyphicon="user" text="Mon compte" %}
       {% elif user.profile.account_kfet.readable %}
@@ -87,7 +88,11 @@
           <li><a href="{% url 'kfet.order' %}">Commandes</a></li>
           {% if user.username != 'kfet_genericteam' %}
           <li class="divider"></li>
-          <li><a href="{% url 'kfet.login.genericteam' %}" target="_blank" class="genericteam">Connexion standard</a></li>
+          <li>
+            <a href="#" data-url="{% url "kfet.login.generic" %}" onclick="submit_url(this)">
+              {% trans "Ouvrir une session partagée" %}
+            </a>
+          </li>
           {% endif %}
           {% if perms.kfet.change_settings %}
           <li><a href="{% url 'kfet.settings' %}">Paramètres</a></li>
@@ -118,13 +123,3 @@
     </ul>
   </div>
 </nav>
-
-<script type="text/javascript">
-
-$(document).ready(function () {
-    $('.genericteam').on('click', function () {
-        setTimeout(function () { location.reload() }, 1000);
-    });
-});
-
-</script>
diff --git a/kfet/templates/kfet/confirm_form.html b/kfet/templates/kfet/confirm_form.html
new file mode 100644
index 00000000..1cffd171
--- /dev/null
+++ b/kfet/templates/kfet/confirm_form.html
@@ -0,0 +1,20 @@
+{% extends "kfet/base_form.html" %}
+{% load i18n %}
+
+{% block title %}{{ title }}{% endblock %}
+{% block header %}{% endblock %}
+
+{% block main-class %}main-bg main-padding text-center{% endblock %}
+{% block main-size %}col-sm-8 col-sm-offset-2 col-md-6 col-md-offset-3{% endblock %}
+
+{% block main %}
+
+<form action="{{ confirm_url }}" method="post">
+  <p>
+    {{ text }}
+  </p>
+  <button type="submit" class="btn btn-primary">{% trans "Confirmer" %}</button>
+  {% csrf_token %}
+</form>
+
+{% endblock %}
diff --git a/kfet/templates/kfet/nav_item.html b/kfet/templates/kfet/nav_item.html
index 8bc311b8..b5981266 100644
--- a/kfet/templates/kfet/nav_item.html
+++ b/kfet/templates/kfet/nav_item.html
@@ -4,6 +4,8 @@
 <li class="{% if not href %}navbar-text{% endif %} {% if request.path == href %}active{% endif %} {{ class }}">
   {% if href %}
   <a href="{{ href }}" title="{{ text }}">
+  {% else %}
+  <span title="{{ text }}">
   {% endif %}<!--
     {% if glyphicon %}
     --><span class="glyphicon glyphicon-{{ glyphicon }}"></span><!--
@@ -14,5 +16,7 @@
     -->
   {% if href %}
   </a>
+  {% else %}
+  </span>
   {% endif %}
 </li>
diff --git a/kfet/urls.py b/kfet/urls.py
index c3499b18..eb4f8311 100644
--- a/kfet/urls.py
+++ b/kfet/urls.py
@@ -8,8 +8,8 @@ from kfet.decorators import teamkfet_required
 
 
 urlpatterns = [
-    url(r'^login/genericteam$', views.login_genericteam,
-        name='kfet.login.genericteam'),
+    url(r'^login/generic$', views.login_generic,
+        name='kfet.login.generic'),
     url(r'^history$', views.history,
         name='kfet.history'),
 
diff --git a/kfet/views.py b/kfet/views.py
index 386eddb6..79fe184d 100644
--- a/kfet/views.py
+++ b/kfet/views.py
@@ -51,7 +51,7 @@ import statistics
 from kfet.statistic import ScaleMixin, last_stats_manifest, tot_ventes, WeekScale
 
 from .auth.views import (  # noqa
-    account_group, login_genericteam, AccountGroupCreate, AccountGroupUpdate,
+    account_group, login_generic, AccountGroupCreate, AccountGroupUpdate,
 )
 
 

From d18fb86a98b5044a169c154961da10b6001e1507 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Aur=C3=A9lien=20Delobelle?= <aurelien.delobelle@gmail.com>
Date: Mon, 25 Sep 2017 18:26:54 +0200
Subject: [PATCH 020/101] Fix attribution inlines of participant in admin

---
 bda/admin.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/bda/admin.py b/bda/admin.py
index 83c89ea5..60d3c1ba 100644
--- a/bda/admin.py
+++ b/bda/admin.py
@@ -56,7 +56,7 @@ class AttributionInline(admin.TabularInline):
     def get_queryset(self, request):
         qs = super().get_queryset(request)
         if self.listing is not None:
-            qs.filter(spectacle__listing=self.listing)
+            qs = qs.filter(spectacle__listing=self.listing)
         return qs
 
 

From 596868f5b6762629ac4d6e4f0347aa7b9b77d785 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Aur=C3=A9lien=20Delobelle?= <aurelien.delobelle@gmail.com>
Date: Sat, 30 Sep 2017 02:39:45 +0200
Subject: [PATCH 021/101] plop

---
 .gitlab-ci.yml | 8 +++++---
 1 file changed, 5 insertions(+), 3 deletions(-)

diff --git a/.gitlab-ci.yml b/.gitlab-ci.yml
index 5080ef32..e2c36d8d 100644
--- a/.gitlab-ci.yml
+++ b/.gitlab-ci.yml
@@ -16,6 +16,9 @@ variables:
     POSTGRES_USER: "cof_gestion"
     POSTGRES_DB: "cof_gestion"
 
+    # psql password authentication
+    PGPASSWORD: $POSTGRES_PASSWORD
+
 
 cache:
     paths:
@@ -28,11 +31,10 @@ before_script:
     - apt-get update -q && apt-get -o dir::cache::archives="vendor/apt" install -yqq postgresql-client
     - sed -E 's/^REDIS_HOST.*/REDIS_HOST = "redis"/' cof/settings/secret_example.py > cof/settings/secret.py
     # Remove the old test database if it has not been done yet
-    - psql --username=cof_gestion --password="4KZt3nGPLVeWSvtBZPSM3fSzXpzEU4" --host="$DBHOST"
-        -e "DROP DATABASE test_$DBNAME" || true
+    - psql --username=$POSTGRES_USER --host=$DBHOST -c "DROP DATABASE IF EXISTS test_$POSTGRES_DB"
     - pip install --cache-dir vendor/pip -t vendor/python -r requirements.txt
 
 test:
     stage: test
     script:
-        - python manage.py test
+        - python manage.py test -v3

From 435e211b3d064204eb7d77a624cdbb1f00a687a8 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Martin=20P=C3=A9pin?= <martin.pepin@ens.fr>
Date: Mon, 2 Oct 2017 13:58:52 +0200
Subject: [PATCH 022/101] Add a "PEI" status + "Gratis" subscription fees

---
 gestioncof/migrations/0013_pei.py | 47 ++++++++++++++++++++++++++++
 gestioncof/models.py              | 51 ++++++++++++++++++++-----------
 2 files changed, 81 insertions(+), 17 deletions(-)
 create mode 100644 gestioncof/migrations/0013_pei.py

diff --git a/gestioncof/migrations/0013_pei.py b/gestioncof/migrations/0013_pei.py
new file mode 100644
index 00000000..2fbddf1f
--- /dev/null
+++ b/gestioncof/migrations/0013_pei.py
@@ -0,0 +1,47 @@
+# -*- coding: utf-8 -*-
+from __future__ import unicode_literals
+
+from django.db import migrations, models
+
+
+class Migration(migrations.Migration):
+
+    dependencies = [
+        ('gestioncof', '0012_merge'),
+    ]
+
+    operations = [
+        migrations.AlterField(
+            model_name='cofprofile',
+            name='occupation',
+            field=models.CharField(
+                verbose_name='Occupation',
+                max_length=9,
+                default='1A',
+                choices=[
+                    ('exterieur', 'Extérieur'),
+                    ('1A', '1A'),
+                    ('2A', '2A'),
+                    ('3A', '3A'),
+                    ('4A', '4A'),
+                    ('archicube', 'Archicube'),
+                    ('doctorant', 'Doctorant'),
+                    ('CST', 'CST'),
+                    ('PEI', 'PEI')
+                ]),
+        ),
+        migrations.AlterField(
+            model_name='cofprofile',
+            name='type_cotiz',
+            field=models.CharField(
+                verbose_name='Type de cotisation',
+                max_length=9,
+                default='normalien',
+                choices=[
+                      ('etudiant', 'Normalien étudiant'),
+                      ('normalien', 'Normalien élève'),
+                      ('exterieur', 'Extérieur'),
+                      ('gratis', 'Gratuit')
+                ]),
+        ),
+    ]
diff --git a/gestioncof/models.py b/gestioncof/models.py
index 6aa6f9cd..ea2cacc4 100644
--- a/gestioncof/models.py
+++ b/gestioncof/models.py
@@ -8,23 +8,6 @@ from gestioncof.petits_cours_models import choices_length
 
 from bda.models import Spectacle
 
-OCCUPATION_CHOICES = (
-    ('exterieur', _("Extérieur")),
-    ('1A', _("1A")),
-    ('2A', _("2A")),
-    ('3A', _("3A")),
-    ('4A', _("4A")),
-    ('archicube', _("Archicube")),
-    ('doctorant', _("Doctorant")),
-    ('CST', _("CST")),
-)
-
-TYPE_COTIZ_CHOICES = (
-    ('etudiant', _("Normalien étudiant")),
-    ('normalien', _("Normalien élève")),
-    ('exterieur', _("Extérieur")),
-)
-
 TYPE_COMMENT_FIELD = (
     ('text', _("Texte long")),
     ('char', _("Texte court")),
@@ -32,6 +15,40 @@ TYPE_COMMENT_FIELD = (
 
 
 class CofProfile(models.Model):
+    STATUS_EXTE = "exterieur"
+    STATUS_1A = "1A"
+    STATUS_2A = "2A"
+    STATUS_3A = "3A"
+    STATUS_4A = "4A"
+    STATUS_ARCHI = "archicube"
+    STATUS_DOCTORANT = "doctorant"
+    STATUS_CST = "CST"
+    STATUS_PEI = "PEI"
+
+    OCCUPATION_CHOICES = (
+        (STATUS_EXTE, _("Extérieur")),
+        (STATUS_1A, _("1A")),
+        (STATUS_2A, _("2A")),
+        (STATUS_3A, _("3A")),
+        (STATUS_4A, _("4A")),
+        (STATUS_ARCHI, _("Archicube")),
+        (STATUS_DOCTORANT, _("Doctorant")),
+        (STATUS_CST, _("CST")),
+        (STATUS_PEI, _("PEI")),
+    )
+
+    COTIZ_ETUDIANT = "etudiant"
+    COTIZ_NORMALIEN = "normalien"
+    COTIZ_EXTE = "exterieur"
+    COTIZ_GRATIS = "gratis"
+
+    TYPE_COTIZ_CHOICES = (
+        (COTIZ_ETUDIANT, _("Normalien étudiant")),
+        (COTIZ_NORMALIEN, _("Normalien élève")),
+        (COTIZ_EXTE, _("Extérieur")),
+        (COTIZ_GRATIS, _("Gratuit")),
+    )
+
     user = models.OneToOneField(User, related_name="profile")
     login_clipper = models.CharField(
         "Login clipper", max_length=32, blank=True

From 4d1cb3c2d7032fe2a481610bf5e68393ac44365e Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Martin=20P=C3=A9pin?= <martin.pepin@ens.fr>
Date: Tue, 10 Oct 2017 15:26:14 +0200
Subject: [PATCH 023/101] Set password for redis in CI

---
 .gitlab-ci.yml | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/.gitlab-ci.yml b/.gitlab-ci.yml
index e2c36d8d..85be668b 100644
--- a/.gitlab-ci.yml
+++ b/.gitlab-ci.yml
@@ -7,6 +7,7 @@ variables:
     DJANGO_SETTINGS_MODULE: "cof.settings.prod"
     DBHOST: "postgres"
     REDIS_HOST: "redis"
+    REDIS_PASSWD: "dummy"
 
     # Cached packages
     PYTHONPATH: "$CI_PROJECT_DIR/vendor/python"
@@ -33,6 +34,7 @@ before_script:
     # Remove the old test database if it has not been done yet
     - psql --username=$POSTGRES_USER --host=$DBHOST -c "DROP DATABASE IF EXISTS test_$POSTGRES_DB"
     - pip install --cache-dir vendor/pip -t vendor/python -r requirements.txt
+    - redis-cli config set requirepass $REDIS_PASSWD || true
 
 test:
     stage: test

From 503b305299fe66f9b84195312049b48962b6337e Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Martin=20P=C3=A9pin?= <martin.pepin@ens.fr>
Date: Tue, 10 Oct 2017 18:34:18 +0200
Subject: [PATCH 024/101] djangorestframework 3.7 breaks with Django 1.8

JSONField doesn't exist in Django 1.8
---
 requirements.txt | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/requirements.txt b/requirements.txt
index f3964212..1591656d 100644
--- a/requirements.txt
+++ b/requirements.txt
@@ -26,5 +26,8 @@ python-dateutil
 wagtail==1.10.*
 wagtailmenus==2.2.*
 
+# Remove this when we switch to Django 1.11
+djangorestframework==3.6.4
+
 # Production tools
 wheel

From 29ef297b2a83177820d5cb087a5869f0c4996eb1 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Martin=20P=C3=A9pin?= <martin.pepin@ens.fr>
Date: Tue, 10 Oct 2017 15:48:38 +0200
Subject: [PATCH 025/101] =?UTF-8?q?try=20to=20set=20the=20redis=20password?=
 =?UTF-8?q?=E2=80=A6?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 .gitlab-ci.yml | 3 +--
 1 file changed, 1 insertion(+), 2 deletions(-)

diff --git a/.gitlab-ci.yml b/.gitlab-ci.yml
index 85be668b..f297cf40 100644
--- a/.gitlab-ci.yml
+++ b/.gitlab-ci.yml
@@ -20,7 +20,6 @@ variables:
     # psql password authentication
     PGPASSWORD: $POSTGRES_PASSWORD
 
-
 cache:
     paths:
         - vendor/python
@@ -31,10 +30,10 @@ before_script:
     - mkdir -p vendor/{python,pip,apt}
     - apt-get update -q && apt-get -o dir::cache::archives="vendor/apt" install -yqq postgresql-client
     - sed -E 's/^REDIS_HOST.*/REDIS_HOST = "redis"/' cof/settings/secret_example.py > cof/settings/secret.py
+    - sed -i.bak -E 's;^REDIS_PASSWD = .*$;REDIS_PASSWD = "";' cof/settings/secret.py
     # Remove the old test database if it has not been done yet
     - psql --username=$POSTGRES_USER --host=$DBHOST -c "DROP DATABASE IF EXISTS test_$POSTGRES_DB"
     - pip install --cache-dir vendor/pip -t vendor/python -r requirements.txt
-    - redis-cli config set requirepass $REDIS_PASSWD || true
 
 test:
     stage: test

From e0ab7f5f94b5812bb69551a84ff5569305beb8c4 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Martin=20P=C3=A9pin?= <martin.pepin@ens.fr>
Date: Tue, 10 Oct 2017 21:21:28 +0200
Subject: [PATCH 026/101] Fix migration conflict

---
 kfet/migrations/0057_merge.py          | 3 ++-
 kfet/migrations/0058_amend_supplier.py | 2 +-
 2 files changed, 3 insertions(+), 2 deletions(-)

diff --git a/kfet/migrations/0057_merge.py b/kfet/migrations/0057_merge.py
index 48f63399..e3cadb23 100644
--- a/kfet/migrations/0057_merge.py
+++ b/kfet/migrations/0057_merge.py
@@ -1,12 +1,13 @@
 # -*- coding: utf-8 -*-
 from __future__ import unicode_literals
 
-from django.db import migrations, models
+from django.db import migrations
 
 
 class Migration(migrations.Migration):
 
     dependencies = [
+        ('kfet', '0057_add_perms_config'),
         ('kfet', '0056_change_account_meta'),
         ('kfet', '0054_update_promos'),
     ]
diff --git a/kfet/migrations/0058_amend_supplier.py b/kfet/migrations/0058_amend_supplier.py
index 0b45dade..764322b0 100644
--- a/kfet/migrations/0058_amend_supplier.py
+++ b/kfet/migrations/0058_amend_supplier.py
@@ -7,7 +7,7 @@ from django.db import migrations, models
 class Migration(migrations.Migration):
 
     dependencies = [
-        ('kfet', '0057_add_perms_config'),
+        ('kfet', '0057_merge'),
     ]
 
     operations = [

From 3f6c5be74836e325a5f6d8ee16e9499ba358c305 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Martin=20P=C3=A9pin?= <martin.pepin@ens.fr>
Date: Tue, 10 Oct 2017 21:27:15 +0200
Subject: [PATCH 027/101] Upgrade python packages before testing

---
 .gitlab-ci.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.gitlab-ci.yml b/.gitlab-ci.yml
index f297cf40..b00817de 100644
--- a/.gitlab-ci.yml
+++ b/.gitlab-ci.yml
@@ -33,7 +33,7 @@ before_script:
     - sed -i.bak -E 's;^REDIS_PASSWD = .*$;REDIS_PASSWD = "";' cof/settings/secret.py
     # Remove the old test database if it has not been done yet
     - psql --username=$POSTGRES_USER --host=$DBHOST -c "DROP DATABASE IF EXISTS test_$POSTGRES_DB"
-    - pip install --cache-dir vendor/pip -t vendor/python -r requirements.txt
+    - pip install --upgrade --cache-dir vendor/pip -t vendor/python -r requirements.txt
 
 test:
     stage: test

From f4a7e9dbf1c7075f13c7673dba698af76ac42320 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Aur=C3=A9lien=20Delobelle?= <aurelien.delobelle@gmail.com>
Date: Wed, 11 Oct 2017 23:34:43 +0200
Subject: [PATCH 028/101] Verbosity should stay calm.

---
 .gitlab-ci.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.gitlab-ci.yml b/.gitlab-ci.yml
index b00817de..19bcc736 100644
--- a/.gitlab-ci.yml
+++ b/.gitlab-ci.yml
@@ -38,4 +38,4 @@ before_script:
 test:
     stage: test
     script:
-        - python manage.py test -v3
+        - python manage.py test

From 85657591f5f69f19fec15d94f6e1d3d7a72ebc85 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Aur=C3=A9lien=20Delobelle?= <aurelien.delobelle@gmail.com>
Date: Thu, 12 Oct 2017 11:10:30 +0200
Subject: [PATCH 029/101] =?UTF-8?q?Fix=20fields=20cleaning=20with=20unreac?=
 =?UTF-8?q?hable=20items=20when=E2=80=A6?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

… object is being created.
---
 kfet/forms.py | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/kfet/forms.py b/kfet/forms.py
index 6ef3aefb..7bafbdd7 100644
--- a/kfet/forms.py
+++ b/kfet/forms.py
@@ -136,6 +136,8 @@ class UserGroupForm(forms.ModelForm):
 
     def clean_groups(self):
         kfet_groups = self.cleaned_data.get('groups')
+        if self.instance.pk is None:
+            return kfet_groups
         other_groups = self.instance.groups.exclude(name__icontains='K-Fêt')
         return list(kfet_groups) + list(other_groups)
 
@@ -173,6 +175,8 @@ class GroupForm(forms.ModelForm):
         # other_groups = self.instance.permissions.difference(
         #     self.fields['permissions'].queryset
         # )
+        if self.instance.pk is None:
+            return kfet_perms
         other_perms = self.instance.permissions.exclude(
             pk__in=[p.pk for p in self.fields['permissions'].queryset],
         )

From fccad5edee83df4726cf54aa19dee5b02661db1c Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Martin=20P=C3=A9pin?= <martin.pepin@ens.fr>
Date: Mon, 16 Oct 2017 14:31:02 +0200
Subject: [PATCH 030/101] rename root -> kfet_genericteam in fixtures

---
 kfet/cms/fixtures/kfet_wagtail_17_05.json | 86 +++++++++++------------
 1 file changed, 43 insertions(+), 43 deletions(-)

diff --git a/kfet/cms/fixtures/kfet_wagtail_17_05.json b/kfet/cms/fixtures/kfet_wagtail_17_05.json
index f6a46c30..66ac7040 100644
--- a/kfet/cms/fixtures/kfet_wagtail_17_05.json
+++ b/kfet/cms/fixtures/kfet_wagtail_17_05.json
@@ -53,7 +53,7 @@
             "kfetpage"
         ],
         "owner": [
-            "root"
+            "kfet_genericteam"
         ],
         "expired": false,
         "first_published_at": "2017-05-28T04:20:00.000Z",
@@ -83,7 +83,7 @@
             "kfetpage"
         ],
         "owner": [
-            "root"
+            "kfet_genericteam"
         ],
         "expired": false,
         "first_published_at": "2017-05-28T04:20:00.000Z",
@@ -113,7 +113,7 @@
             "kfetpage"
         ],
         "owner": [
-            "root"
+            "kfet_genericteam"
         ],
         "expired": false,
         "first_published_at": "2017-05-28T04:20:00.000Z",
@@ -143,7 +143,7 @@
             "kfetpage"
         ],
         "owner": [
-            "root"
+            "kfet_genericteam"
         ],
         "expired": false,
         "first_published_at": "2017-05-28T04:20:00.000Z",
@@ -173,7 +173,7 @@
             "kfetpage"
         ],
         "owner": [
-            "root"
+            "kfet_genericteam"
         ],
         "expired": false,
         "first_published_at": "2017-05-28T04:20:00.000Z",
@@ -203,7 +203,7 @@
             "kfetpage"
         ],
         "owner": [
-            "root"
+            "kfet_genericteam"
         ],
         "expired": false,
         "first_published_at": "2017-05-28T04:20:00.000Z",
@@ -233,7 +233,7 @@
             "page"
         ],
         "owner": [
-            "root"
+            "kfet_genericteam"
         ],
         "expired": false,
         "first_published_at": "2017-05-28T04:20:00.000Z",
@@ -263,7 +263,7 @@
             "kfetpage"
         ],
         "owner": [
-            "root"
+            "kfet_genericteam"
         ],
         "expired": false,
         "first_published_at": "2017-05-28T04:20:00.000Z",
@@ -681,7 +681,7 @@
     "fields": {
         "created_at": "2017-05-30T04:20:00.000Z",
         "uploaded_by_user": [
-            "root"
+            "kfet_genericteam"
         ],
         "collection": 2,
         "title": "K-F\u00eat - Plan d'acc\u00e8s",
@@ -694,7 +694,7 @@
     "fields": {
         "created_at": "2017-05-30T04:20:00.000Z",
         "uploaded_by_user": [
-            "root"
+            "kfet_genericteam"
         ],
         "collection": 2,
         "title": "K-F\u00eat - Demande d'autorisation",
@@ -707,7 +707,7 @@
     "fields": {
         "created_at": "2017-05-30T04:20:00.000Z",
         "uploaded_by_user": [
-            "root"
+            "kfet_genericteam"
         ],
         "collection": 2,
         "title": "K-F\u00eat - Trait\u00e9 de Flipper Th\u00e9orique",
@@ -730,7 +730,7 @@
         "title": "K-F\u00eat - Amazon Hunt",
         "width": 200,
         "uploaded_by_user": [
-            "root"
+            "kfet_genericteam"
         ]
     }
 },
@@ -750,7 +750,7 @@
         "title": "K-F\u00eat - Fun Machine",
         "width": 200,
         "uploaded_by_user": [
-            "root"
+            "kfet_genericteam"
         ]
     }
 },
@@ -767,7 +767,7 @@
         "title": "Hugo Manet",
         "collection": 2,
         "uploaded_by_user": [
-            "root"
+            "kfet_genericteam"
         ],
         "created_at": "2017-05-30T04:20:00.000Z"
     },
@@ -787,7 +787,7 @@
         "title": "Lisa Gourdon",
         "collection": 2,
         "uploaded_by_user": [
-            "root"
+            "kfet_genericteam"
         ],
         "created_at": "2017-05-30T04:20:00.000Z"
     },
@@ -807,7 +807,7 @@
         "title": "Pierre Quesselaire",
         "collection": 2,
         "uploaded_by_user": [
-            "root"
+            "kfet_genericteam"
         ],
         "created_at": "2017-05-30T04:20:00.000Z"
     },
@@ -827,7 +827,7 @@
         "title": "Thibault Scoquard",
         "collection": 2,
         "uploaded_by_user": [
-            "root"
+            "kfet_genericteam"
         ],
         "created_at": "2017-05-30T04:20:00.000Z"
     },
@@ -847,7 +847,7 @@
         "title": "Arnaud Fanthomme",
         "collection": 2,
         "uploaded_by_user": [
-            "root"
+            "kfet_genericteam"
         ],
         "created_at": "2017-05-30T04:20:00.000Z"
     },
@@ -867,7 +867,7 @@
         "title": "Vincent Balerdi",
         "collection": 2,
         "uploaded_by_user": [
-            "root"
+            "kfet_genericteam"
         ],
         "created_at": "2017-05-30T04:20:00.000Z"
     },
@@ -887,7 +887,7 @@
         "title": "Nathana\u00ebl Willaime",
         "collection": 2,
         "uploaded_by_user": [
-            "root"
+            "kfet_genericteam"
         ],
         "created_at": "2017-05-30T04:20:00.000Z"
     },
@@ -907,7 +907,7 @@
         "title": "\u00c9lisabeth Miller",
         "collection": 2,
         "uploaded_by_user": [
-            "root"
+            "kfet_genericteam"
         ],
         "created_at": "2017-05-30T04:20:00.000Z"
     },
@@ -927,7 +927,7 @@
         "title": "Arthur Lesage",
         "collection": 2,
         "uploaded_by_user": [
-            "root"
+            "kfet_genericteam"
         ],
         "created_at": "2017-05-30T04:20:00.000Z"
     },
@@ -947,7 +947,7 @@
         "title": "Sarah Asset",
         "collection": 2,
         "uploaded_by_user": [
-            "root"
+            "kfet_genericteam"
         ],
         "created_at": "2017-05-30T04:20:00.000Z"
     },
@@ -967,7 +967,7 @@
         "title": "Alexandre Legrand",
         "collection": 2,
         "uploaded_by_user": [
-            "root"
+            "kfet_genericteam"
         ],
         "created_at": "2017-05-30T04:20:00.000Z"
     },
@@ -987,7 +987,7 @@
         "title": "\u00c9tienne Baudel",
         "collection": 2,
         "uploaded_by_user": [
-            "root"
+            "kfet_genericteam"
         ],
         "created_at": "2017-05-30T04:20:00.000Z"
     },
@@ -1007,7 +1007,7 @@
         "title": "Marine Snape",
         "collection": 2,
         "uploaded_by_user": [
-            "root"
+            "kfet_genericteam"
         ],
         "created_at": "2017-05-30T04:20:00.000Z"
     },
@@ -1027,7 +1027,7 @@
         "title": "Anatole Gosset",
         "collection": 2,
         "uploaded_by_user": [
-            "root"
+            "kfet_genericteam"
         ],
         "created_at": "2017-05-30T04:20:00.000Z"
     },
@@ -1047,7 +1047,7 @@
         "title": "Jacko Rastikian",
         "collection": 2,
         "uploaded_by_user": [
-            "root"
+            "kfet_genericteam"
         ],
         "created_at": "2017-05-30T04:20:00.000Z"
     },
@@ -1067,7 +1067,7 @@
         "title": "Alexandre Jannaud",
         "collection": 2,
         "uploaded_by_user": [
-            "root"
+            "kfet_genericteam"
         ],
         "created_at": "2017-05-30T04:20:00.000Z"
     },
@@ -1087,7 +1087,7 @@
         "title": "Aur\u00e9lien Delobelle",
         "collection": 2,
         "uploaded_by_user": [
-            "root"
+            "kfet_genericteam"
         ],
         "created_at": "2017-05-30T04:20:00.000Z"
     },
@@ -1107,7 +1107,7 @@
         "title": "Sylvain Douteau",
         "collection": 2,
         "uploaded_by_user": [
-            "root"
+            "kfet_genericteam"
         ],
         "created_at": "2017-05-30T04:20:00.000Z"
     },
@@ -1127,7 +1127,7 @@
         "title": "Rapha\u00ebl Lescanne",
         "collection": 2,
         "uploaded_by_user": [
-            "root"
+            "kfet_genericteam"
         ],
         "created_at": "2017-05-30T04:20:00.000Z"
     },
@@ -1147,7 +1147,7 @@
         "title": "Romain Gourvil",
         "collection": 2,
         "uploaded_by_user": [
-            "root"
+            "kfet_genericteam"
         ],
         "created_at": "2017-05-30T04:20:00.000Z"
     },
@@ -1167,7 +1167,7 @@
         "title": "Marie Labeye",
         "collection": 2,
         "uploaded_by_user": [
-            "root"
+            "kfet_genericteam"
         ],
         "created_at": "2017-05-30T04:20:00.000Z"
     },
@@ -1187,7 +1187,7 @@
         "title": "Oscar Blumberg",
         "collection": 2,
         "uploaded_by_user": [
-            "root"
+            "kfet_genericteam"
         ],
         "created_at": "2017-05-30T04:20:00.000Z"
     },
@@ -1207,7 +1207,7 @@
         "title": "Za\u00efd Allybokus",
         "collection": 2,
         "uploaded_by_user": [
-            "root"
+            "kfet_genericteam"
         ],
         "created_at": "2017-05-30T04:20:00.000Z"
     },
@@ -1227,7 +1227,7 @@
         "title": "Damien Garreau",
         "collection": 2,
         "uploaded_by_user": [
-            "root"
+            "kfet_genericteam"
         ],
         "created_at": "2017-05-30T04:20:00.000Z"
     },
@@ -1247,7 +1247,7 @@
         "title": "Andr\u00e9a Londono-Lopez",
         "collection": 2,
         "uploaded_by_user": [
-            "root"
+            "kfet_genericteam"
         ],
         "created_at": "2017-05-30T04:20:00.000Z"
     },
@@ -1267,7 +1267,7 @@
         "title": "Tristan Roussel",
         "collection": 2,
         "uploaded_by_user": [
-            "root"
+            "kfet_genericteam"
         ],
         "created_at": "2017-05-30T04:20:00.000Z"
     },
@@ -1287,7 +1287,7 @@
         "title": "Guillaume Vernade",
         "collection": 2,
         "uploaded_by_user": [
-            "root"
+            "kfet_genericteam"
         ],
         "created_at": "2017-05-30T04:20:00.000Z"
     },
@@ -1307,7 +1307,7 @@
         "title": "Lucas Mercier",
         "collection": 2,
         "uploaded_by_user": [
-            "root"
+            "kfet_genericteam"
         ],
         "created_at": "2017-05-30T04:20:00.000Z"
     },
@@ -1327,7 +1327,7 @@
         "title": "Fran\u00e7ois Maillot",
         "collection": 2,
         "uploaded_by_user": [
-            "root"
+            "kfet_genericteam"
         ],
         "created_at": "2017-05-30T04:20:00.000Z"
     },
@@ -1347,7 +1347,7 @@
         "title": "Fabrice Catoire",
         "collection": 2,
         "uploaded_by_user": [
-            "root"
+            "kfet_genericteam"
         ],
         "created_at": "2017-05-30T04:20:00.000Z"
     },

From 46187659ed7a91c11030308cdfb2879413c14526 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Aur=C3=A9lien=20Delobelle?= <aurelien.delobelle@gmail.com>
Date: Tue, 17 Oct 2017 14:41:53 +0200
Subject: [PATCH 031/101] Fix tirage pk conflicts with postgres

---
 bda/migrations/0002_add_tirage.py | 58 +++++++++++++++++++++++--------
 1 file changed, 43 insertions(+), 15 deletions(-)

diff --git a/bda/migrations/0002_add_tirage.py b/bda/migrations/0002_add_tirage.py
index 1956a4a4..22c387a0 100644
--- a/bda/migrations/0002_add_tirage.py
+++ b/bda/migrations/0002_add_tirage.py
@@ -5,17 +5,34 @@ from django.db import migrations, models
 from django.conf import settings
 from django.utils import timezone
 
-def forwards_func(apps, schema_editor):
+
+def fill_tirage_fields(apps, schema_editor):
+    """
+    Create a `Tirage` to fill new field `tirage` of `Participant`
+    and `Spectacle` already existing.
+    """
+    Participant = apps.get_model("bda", "Participant")
+    Spectacle = apps.get_model("bda", "Spectacle")
     Tirage = apps.get_model("bda", "Tirage")
-    db_alias = schema_editor.connection.alias
-    Tirage.objects.using(db_alias).bulk_create([
-        Tirage(
-            id=1,
-            title="Tirage de test (migration)",
-            active=False,
-            ouverture=timezone.now(),
-            fermeture=timezone.now()),
-    ])
+
+    # These querysets only contains instances not linked to any `Tirage`.
+    participants = Participant.objects.filter(tirage=None)
+    spectacles = Spectacle.objects.filter(tirage=None)
+
+    if not participants.count() and not spectacles.count():
+        # No need to create a "trash" tirage.
+        return
+
+    tirage = Tirage.objects.create(
+        title="Tirage de test (migration)",
+        active=False,
+        ouverture=timezone.now(),
+        fermeture=timezone.now(),
+    )
+
+    participants.update(tirage=tirage)
+    spectacles.update(tirage=tirage)
+
 
 class Migration(migrations.Migration):
 
@@ -35,22 +52,33 @@ class Migration(migrations.Migration):
                 ('active', models.BooleanField(default=True, verbose_name=b'Tirage actif')),
             ],
         ),
-        migrations.RunPython(forwards_func, migrations.RunPython.noop),
         migrations.AlterField(
             model_name='participant',
             name='user',
             field=models.ForeignKey(to=settings.AUTH_USER_MODEL),
         ),
+        # Create fields `spectacle` for `Participant` and `Spectacle` models.
+        # These fields are not nullable, but we first create them as nullable
+        # to give a default value for existing instances of these models.
         migrations.AddField(
             model_name='participant',
             name='tirage',
-            field=models.ForeignKey(default=1, to='bda.Tirage'),
-            preserve_default=False,
+            field=models.ForeignKey(to='bda.Tirage', null=True),
         ),
         migrations.AddField(
             model_name='spectacle',
             name='tirage',
-            field=models.ForeignKey(default=1, to='bda.Tirage'),
-            preserve_default=False,
+            field=models.ForeignKey(to='bda.Tirage', null=True),
+        ),
+        migrations.RunPython(fill_tirage_fields, migrations.RunPython.noop),
+        migrations.AlterField(
+            model_name='participant',
+            name='tirage',
+            field=models.ForeignKey(to='bda.Tirage'),
+        ),
+        migrations.AlterField(
+            model_name='spectacle',
+            name='tirage',
+            field=models.ForeignKey(to='bda.Tirage'),
         ),
     ]

From 732e47707e96bb7047438edb1791511e89918fa1 Mon Sep 17 00:00:00 2001
From: Ludovic Stephan <lstephan@clipper.ens.fr>
Date: Mon, 23 Oct 2017 17:25:58 +0200
Subject: [PATCH 032/101] Add unsubscribe option + list of current draws

---
 bda/forms.py                           | 41 +++++++++++++++++++--
 bda/templates/bda/revente-tirages.html | 28 +++++++++++++++
 bda/urls.py                            | 11 +++---
 bda/views.py                           | 50 +++++++++++++++++++++++++-
 gestioncof/templates/home.html         |  7 ++--
 5 files changed, 126 insertions(+), 11 deletions(-)
 create mode 100644 bda/templates/bda/revente-tirages.html

diff --git a/bda/forms.py b/bda/forms.py
index c0417d1e..139ef45d 100644
--- a/bda/forms.py
+++ b/bda/forms.py
@@ -4,7 +4,7 @@ from django import forms
 from django.forms.models import BaseInlineFormSet
 from django.utils import timezone
 
-from bda.models import Attribution, Spectacle
+from bda.models import Attribution, Spectacle, SpectacleRevente
 
 
 class InscriptionInlineFormSet(BaseInlineFormSet):
@@ -45,6 +45,9 @@ class AttributionModelMultipleChoiceField(forms.ModelMultipleChoiceField):
     def label_from_instance(self, obj):
         return "%s" % str(obj.spectacle)
 
+class ReventeModelMultipleChoiceField(forms.ModelMultipleChoiceField):
+    def label_from_instance(self, obj):
+        return "%s" % str(obj.attribution.spectacle)
 
 class ResellForm(forms.Form):
     attributions = AttributionModelMultipleChoiceField(
@@ -63,7 +66,6 @@ class ResellForm(forms.Form):
                             'participant__user')
         )
 
-
 class AnnulForm(forms.Form):
     attributions = AttributionModelMultipleChoiceField(
                          label='',
@@ -83,7 +85,6 @@ class AnnulForm(forms.Form):
                             'participant__user')
         )
 
-
 class InscriptionReventeForm(forms.Form):
     spectacles = forms.ModelMultipleChoiceField(
                     queryset=Spectacle.objects.none(),
@@ -98,6 +99,40 @@ class InscriptionReventeForm(forms.Form):
             .filter(date__gte=timezone.now())
         )
 
+class ReventeTirageAnnulForm(forms.Form):
+    reventes = ReventeModelMultipleChoiceField(
+                  label='',
+                  queryset=SpectacleRevente.objects.none(),
+                  widget=forms.CheckboxSelectMultiple,
+                  required=False
+              )
+
+    def __init__(self, participant, *args, **kwargs):
+        super().__init__(*args, **kwargs)
+        self.fields['reventes'].queryset = (
+            participant.wanted.filter(soldTo__isnull=True)
+                       .select_related('attribution__spectacle')
+        )
+
+
+class ReventeTirageForm(forms.Form):
+    reventes = ReventeModelMultipleChoiceField(
+                  label='',
+                  queryset=SpectacleRevente.objects.none(),
+                  widget=forms.CheckboxSelectMultiple,
+                  required=False
+              )
+
+    def __init__(self, participant, *args, **kwargs):
+        super().__init__(*args, **kwargs)
+        self.fields['reventes'].queryset = (
+            SpectacleRevente.objects.filter(
+                notif_sent=True,
+                shotgun=False,
+                tirage_done=False
+            ).exclude(answered_mail=participant)
+            .select_related('attribution__spectacle')
+        )
 
 class SoldForm(forms.Form):
     attributions = AttributionModelMultipleChoiceField(
diff --git a/bda/templates/bda/revente-tirages.html b/bda/templates/bda/revente-tirages.html
new file mode 100644
index 00000000..bd738673
--- /dev/null
+++ b/bda/templates/bda/revente-tirages.html
@@ -0,0 +1,28 @@
+{% extends "base_title.html" %}
+{% load bootstrap %}
+
+{% block realcontent %}
+
+<h2>Tirages au sort de reventes</h2>
+{% if annulform.reventes %}
+<h3>Mes inscriptions</h3>
+<form class="form-horizontal" action="" method="post">
+    {% csrf_token %}
+    {{annulform|bootstrap}}
+    <div class="form-actions">
+        <input type="submit" class="btn btn-primary" name="annul" value="Se désinscrire des tirages sélectionnés">
+    </div>
+</form>
+{% endif %}
+<br>
+{% if subform.reventes %}
+<h3>Tirages en cours</h3>
+<form class="form-horizontal" action="" method="post">
+    {% csrf_token %}
+    {{subform|bootstrap}}
+    <div class="form-actions">
+        <input type="submit" class="btn btn-primary" name="subscribe" value="S'inscrire aux tirages sélectionnés">
+    </div>
+</form>
+{% endif %}
+{% endblock %}
diff --git a/bda/urls.py b/bda/urls.py
index 876c84ea..51dd4235 100644
--- a/bda/urls.py
+++ b/bda/urls.py
@@ -32,16 +32,19 @@ urlpatterns = [
     url(r'^spectacles/unpaid/(?P<tirage_id>\d+)$',
         views.unpaid,
         name="bda-unpaid"),
-    url(r'^liste-revente/(?P<tirage_id>\d+)$',
+    url(r'^revente/(?P<tirage_id>\d+)/list$',
         views.list_revente,
         name="bda-liste-revente"),
-    url(r'^buy-revente/(?P<spectacle_id>\d+)$',
+    url(r'^revente/(?P<tirage_id>\d+)/tirages$',
+        views.revente_tirages,
+        name="bda-revente-tirages"),
+    url(r'^revente/(?P<spectacle_id>\d+)/buy$',
         views.buy_revente,
         name="bda-buy-revente"),
-    url(r'^revente-interested/(?P<revente_id>\d+)$',
+    url(r'^revente/(?P<revente_id>\d+)/interested$',
         views.revente_interested,
         name='bda-revente-interested'),
-    url(r'^revente-immediat/(?P<tirage_id>\d+)$',
+    url(r'^revente/(?P<tirage_id>\d+)/immediat$',
         views.revente_shotgun,
         name="bda-shotgun"),
     url(r'^mails-rappel/(?P<spectacle_id>\d+)$',
diff --git a/bda/views.py b/bda/views.py
index 84b6c9d3..4b75c116 100644
--- a/bda/views.py
+++ b/bda/views.py
@@ -30,7 +30,7 @@ from bda.models import (
 from bda.algorithm import Algorithm
 from bda.forms import (
     TokenForm, ResellForm, AnnulForm, InscriptionReventeForm, SoldForm,
-    InscriptionInlineFormSet,
+    InscriptionInlineFormSet, ReventeTirageForm, ReventeTirageAnnulForm
 )
 
 
@@ -377,6 +377,7 @@ def revente(request, tirage_id):
                         if not created:
                             revente.seller = participant
                             revente.date = timezone.now()
+                            revente.wanted = Participant.objects.none()
                             revente.soldTo = None
                             revente.notif_sent = False
                             revente.tirage_done = False
@@ -442,6 +443,53 @@ def revente(request, tirage_id):
                    "annulform": annulform, "resellform": resellform})
 
 
+@login_required
+def revente_tirages(request, tirage_id):
+    tirage = get_object_or_404(Tirage, id=tirage_id)
+    participant, _ = Participant.objects.get_or_create(
+            user=request.user, tirage=tirage)
+    unsub = 0
+    subform = ReventeTirageForm(participant, prefix="subscribe")
+    annulform = ReventeTirageAnnulForm(participant, prefix="annul")
+
+    if request.method == 'POST':
+        if "subscribe" in request.POST:
+            subform = ReventeTirageForm(participant, request.POST,
+                                        prefix="subscribe")
+            if subform.is_valid():
+                sub = 0
+                reventes = subform.cleaned_data['reventes']
+                for revente in reventes:
+                    revente.answered_mail.add(participant)
+                    sub += 1
+                if sub > 0:
+                    plural = "s" if sub > 1 else ""
+                    messages.success(
+                        request,
+                        "Tu as bien été inscrit à {} revente{}"
+                            .format(sub, plural)
+                    )
+        elif "annul" in request.POST:
+            annulform = ReventeTirageAnnulForm(participant, request.POST,
+                                               prefix="annul")
+            if annulform.is_valid():
+                unsub = 0
+                reventes = annulform.cleaned_data['reventes']
+                for revente in reventes:
+                    revente.answered_mail.remove(participant)
+                    unsub += 1
+                if unsub > 0:
+                    plural = "s" if unsub > 1 else ""
+                    messages.success(
+                        request,
+                        "Tu as bien été désinscrit de {} revente{}"
+                            .format(unsub, plural)
+                    )
+
+    return render(request, "bda/revente-tirages.html",
+                  {"annulform": annulform, "subform": subform})
+
+
 @login_required
 def revente_interested(request, revente_id):
     revente = get_object_or_404(SpectacleRevente, id=revente_id)
diff --git a/gestioncof/templates/home.html b/gestioncof/templates/home.html
index acc04f30..f7ca57b5 100644
--- a/gestioncof/templates/home.html
+++ b/gestioncof/templates/home.html
@@ -43,9 +43,10 @@
                             <li><a href="{% url "bda-etat-places" tirage.id %}">État des demandes</a></li>
                         {% else %}
                             <li><a href="{% url "bda-places-attribuees" tirage.id %}">Mes places</a></li> 
-                            <li><a href="{% url "bda-revente" tirage.id %}">Revendre une place</a></li> 
-                        <li><a href="{% url "bda-liste-revente" tirage.id %}">S'inscrire à BdA-Revente</a></li>
-                        <li><a href="{% url "bda-shotgun" tirage.id %}">Places disponibles immédiatement</a></li>
+                            <li><a href="{% url "bda-revente" tirage.id %}">Gestion de mes reventes</a></li> 
+                            <li><a href="{% url "bda-revente-tirages" tirage.id %}">Reventes en cours</a></li> 
+                            <li><a href="{% url "bda-liste-revente" tirage.id %}">S'inscrire à BdA-Revente</a></li>
+                            <li><a href="{% url "bda-shotgun" tirage.id %}">Places disponibles immédiatement</a></li>
                         {% endif %}
                     </ul> 
                 {% endfor %}

From e74dbb11f1556a4ffb3cc42f83686a3a27cf5f45 Mon Sep 17 00:00:00 2001
From: Ludovic Stephan <lstephan@clipper.ens.fr>
Date: Mon, 23 Oct 2017 18:39:45 +0200
Subject: [PATCH 033/101] Organize revente files and function names

---
 .../revente/confirm-shotgun.html}             |  0
 .../revente/confirmed.html}                   |  0
 .../revente/mail-success.html}                |  0
 .../{reventes.html => revente/manage.html}    |  0
 .../revente/none.html}                        |  0
 .../revente/notpaid.html}                     |  0
 .../revente/shotgun.html}                     |  2 +-
 .../subscribe.html}                           |  0
 .../tirages.html}                             |  0
 .../revente/wrongtime.html}                   |  2 +-
 bda/urls.py                                   | 30 +++++++++++--------
 bda/views.py                                  | 30 +++++++++----------
 gestioncof/management/data/custommail.json    |  2 +-
 gestioncof/templates/home.html                |  6 ++--
 14 files changed, 38 insertions(+), 34 deletions(-)
 rename bda/templates/{revente-confirm.html => bda/revente/confirm-shotgun.html} (100%)
 rename bda/templates/{bda-interested.html => bda/revente/confirmed.html} (100%)
 rename bda/templates/{bda-success.html => bda/revente/mail-success.html} (100%)
 rename bda/templates/bda/{reventes.html => revente/manage.html} (100%)
 rename bda/templates/{bda-no-revente.html => bda/revente/none.html} (100%)
 rename bda/templates/{bda-notpaid.html => bda/revente/notpaid.html} (100%)
 rename bda/templates/{bda-shotgun.html => bda/revente/shotgun.html} (83%)
 rename bda/templates/bda/{liste-reventes.html => revente/subscribe.html} (100%)
 rename bda/templates/bda/{revente-tirages.html => revente/tirages.html} (100%)
 rename bda/templates/{bda-wrongtime.html => bda/revente/wrongtime.html} (86%)

diff --git a/bda/templates/revente-confirm.html b/bda/templates/bda/revente/confirm-shotgun.html
similarity index 100%
rename from bda/templates/revente-confirm.html
rename to bda/templates/bda/revente/confirm-shotgun.html
diff --git a/bda/templates/bda-interested.html b/bda/templates/bda/revente/confirmed.html
similarity index 100%
rename from bda/templates/bda-interested.html
rename to bda/templates/bda/revente/confirmed.html
diff --git a/bda/templates/bda-success.html b/bda/templates/bda/revente/mail-success.html
similarity index 100%
rename from bda/templates/bda-success.html
rename to bda/templates/bda/revente/mail-success.html
diff --git a/bda/templates/bda/reventes.html b/bda/templates/bda/revente/manage.html
similarity index 100%
rename from bda/templates/bda/reventes.html
rename to bda/templates/bda/revente/manage.html
diff --git a/bda/templates/bda-no-revente.html b/bda/templates/bda/revente/none.html
similarity index 100%
rename from bda/templates/bda-no-revente.html
rename to bda/templates/bda/revente/none.html
diff --git a/bda/templates/bda-notpaid.html b/bda/templates/bda/revente/notpaid.html
similarity index 100%
rename from bda/templates/bda-notpaid.html
rename to bda/templates/bda/revente/notpaid.html
diff --git a/bda/templates/bda-shotgun.html b/bda/templates/bda/revente/shotgun.html
similarity index 83%
rename from bda/templates/bda-shotgun.html
rename to bda/templates/bda/revente/shotgun.html
index e10fae00..fae36c04 100644
--- a/bda/templates/bda-shotgun.html
+++ b/bda/templates/bda/revente/shotgun.html
@@ -5,7 +5,7 @@
   {% if shotgun %}
     <ul class="list-unstyled">
     {% for spectacle in shotgun %}
-    <li><a href="{% url "bda-buy-revente" spectacle.id %}">{{spectacle}}</a></li>
+    <li><a href="{% url "bda-revente-buy" spectacle.id %}">{{spectacle}}</a></li>
     {% endfor %}
   {% else %}
     <p> Pas de places disponibles immédiatement, désolé !</p>
diff --git a/bda/templates/bda/liste-reventes.html b/bda/templates/bda/revente/subscribe.html
similarity index 100%
rename from bda/templates/bda/liste-reventes.html
rename to bda/templates/bda/revente/subscribe.html
diff --git a/bda/templates/bda/revente-tirages.html b/bda/templates/bda/revente/tirages.html
similarity index 100%
rename from bda/templates/bda/revente-tirages.html
rename to bda/templates/bda/revente/tirages.html
diff --git a/bda/templates/bda-wrongtime.html b/bda/templates/bda/revente/wrongtime.html
similarity index 86%
rename from bda/templates/bda-wrongtime.html
rename to bda/templates/bda/revente/wrongtime.html
index dfafb05f..18c417a2 100644
--- a/bda/templates/bda-wrongtime.html
+++ b/bda/templates/bda/revente/wrongtime.html
@@ -6,7 +6,7 @@
     <p>Le tirage au sort de cette revente a déjà été effectué !</p>
 
     <p>Si personne n'était intéressé, elle est maintenant disponible 
-    <a href="{% url "bda-buy-revente" revente.attribution.spectacle.id %}">ici</a>.</p>
+    <a href="{% url "bda-revente-buy" revente.attribution.spectacle.id %}">ici</a>.</p>
     {% else %}
     <p> Il n'est pas encore possible de s'inscrire à cette revente, réessaie dans quelque temps !</p>
     {% endif %}
diff --git a/bda/urls.py b/bda/urls.py
index 51dd4235..7588187c 100644
--- a/bda/urls.py
+++ b/bda/urls.py
@@ -16,9 +16,6 @@ urlpatterns = [
     url(r'^places/(?P<tirage_id>\d+)$',
         views.places,
         name="bda-places-attribuees"),
-    url(r'^revente/(?P<tirage_id>\d+)$',
-        views.revente,
-        name='bda-revente'),
     url(r'^etat-places/(?P<tirage_id>\d+)$',
         views.etat_places,
         name='bda-etat-places'),
@@ -32,21 +29,28 @@ urlpatterns = [
     url(r'^spectacles/unpaid/(?P<tirage_id>\d+)$',
         views.unpaid,
         name="bda-unpaid"),
-    url(r'^revente/(?P<tirage_id>\d+)/list$',
-        views.list_revente,
-        name="bda-liste-revente"),
+
+    # Urls BdA-Revente
+
+    url(r'^revente/(?P<tirage_id>\d+)/manage$',
+        views.revente_manage,
+        name='bda-revente-manage'),
+    url(r'^revente/(?P<tirage_id>\d+)/subscribe$',
+        views.revente_subscribe,
+        name="bda-revente-subscribe"),
     url(r'^revente/(?P<tirage_id>\d+)/tirages$',
         views.revente_tirages,
         name="bda-revente-tirages"),
     url(r'^revente/(?P<spectacle_id>\d+)/buy$',
-        views.buy_revente,
-        name="bda-buy-revente"),
-    url(r'^revente/(?P<revente_id>\d+)/interested$',
-        views.revente_interested,
-        name='bda-revente-interested'),
-    url(r'^revente/(?P<tirage_id>\d+)/immediat$',
+        views.revente_buy,
+        name="bda-revente-buy"),
+    url(r'^revente/(?P<revente_id>\d+)/confirm$',
+        views.revente_confirm,
+        name='bda-revente-confirm'),
+    url(r'^revente/(?P<tirage_id>\d+)/shotgun$',
         views.revente_shotgun,
-        name="bda-shotgun"),
+        name="bda-revente-shotgun"),
+
     url(r'^mails-rappel/(?P<spectacle_id>\d+)$',
         views.send_rappel,
         name="bda-rappels"
diff --git a/bda/views.py b/bda/views.py
index 4b75c116..c0e64230 100644
--- a/bda/views.py
+++ b/bda/views.py
@@ -349,13 +349,13 @@ def tirage(request, tirage_id):
 
 
 @login_required
-def revente(request, tirage_id):
+def revente_manage(request, tirage_id):
     tirage = get_object_or_404(Tirage, id=tirage_id)
     participant, created = Participant.objects.get_or_create(
         user=request.user, tirage=tirage)
 
     if not participant.paid:
-        return render(request, "bda-notpaid.html", {})
+        return render(request, "bda/revente/notpaid.html", {})
 
     resellform = ResellForm(participant, prefix='resell')
     annulform = AnnulForm(participant, prefix='annul')
@@ -438,7 +438,7 @@ def revente(request, tirage_id):
         .filter(
             Q(revente__soldTo__isnull=True) | Q(revente__soldTo=participant))
 
-    return render(request, "bda/reventes.html",
+    return render(request, "bda/revente/manage.html",
                   {'tirage': tirage, 'overdue': overdue, "soldform": soldform,
                    "annulform": annulform, "resellform": resellform})
 
@@ -486,27 +486,27 @@ def revente_tirages(request, tirage_id):
                             .format(unsub, plural)
                     )
 
-    return render(request, "bda/revente-tirages.html",
+    return render(request, "bda/revente/tirages.html",
                   {"annulform": annulform, "subform": subform})
 
 
 @login_required
-def revente_interested(request, revente_id):
+def revente_confirm(request, revente_id):
     revente = get_object_or_404(SpectacleRevente, id=revente_id)
     participant, _ = Participant.objects.get_or_create(
         user=request.user, tirage=revente.attribution.spectacle.tirage)
     if (timezone.now() < revente.date + timedelta(hours=1)) or revente.shotgun:
-        return render(request, "bda-wrongtime.html",
+        return render(request, "bda/revente/wrongtime.html",
                       {"revente": revente})
 
     revente.answered_mail.add(participant)
-    return render(request, "bda-interested.html",
+    return render(request, "bda/revente/confirmed.html",
                   {"spectacle": revente.attribution.spectacle,
                    "date": revente.date_tirage})
 
 
 @login_required
-def list_revente(request, tirage_id):
+def revente_subscribe(request, tirage_id):
     tirage = get_object_or_404(Tirage, id=tirage_id)
     participant, _ = Participant.objects.get_or_create(
         user=request.user, tirage=tirage)
@@ -560,11 +560,11 @@ def list_revente(request, tirage_id):
         )
         messages.info(request, msg, extra_tags="safe")
 
-    return render(request, "bda/liste-reventes.html", {"form": form})
+    return render(request, "bda/revente/subscribe.html", {"form": form})
 
 
 @login_required
-def buy_revente(request, spectacle_id):
+def revente_buy(request, spectacle_id):
     spectacle = get_object_or_404(Spectacle, id=spectacle_id)
     tirage = spectacle.tirage
     participant, _ = Participant.objects.get_or_create(
@@ -578,13 +578,13 @@ def buy_revente(request, spectacle_id):
     own_reventes = reventes.filter(seller=participant)
     if len(own_reventes) > 0:
         own_reventes[0].delete()
-        return HttpResponseRedirect(reverse("bda-shotgun",
+        return HttpResponseRedirect(reverse("bda-revente-shotgun",
                                             args=[tirage.id]))
 
     reventes_shotgun = reventes.filter(shotgun=True)
 
     if not reventes_shotgun:
-        return render(request, "bda-no-revente.html", {})
+        return render(request, "bda/revente/none.html", {})
 
     if request.POST:
         revente = random.choice(reventes_shotgun)
@@ -601,11 +601,11 @@ def buy_revente(request, spectacle_id):
             [revente.seller.user.email],
             context=context,
         )
-        return render(request, "bda-success.html",
+        return render(request, "bda/revente/mail-success.html",
                       {"seller": revente.attribution.participant.user,
                        "spectacle": spectacle})
 
-    return render(request, "revente-confirm.html",
+    return render(request, "bda/revente/confirm-shotgun.html",
                   {"spectacle": spectacle,
                    "user": request.user})
 
@@ -629,7 +629,7 @@ def revente_shotgun(request, tirage_id):
     )
     shotgun = [sp for sp in spectacles if len(sp.shotguns) > 0]
 
-    return render(request, "bda-shotgun.html",
+    return render(request, "bda/revente/shotgun.html",
                   {"shotgun": shotgun})
 
 
diff --git a/gestioncof/management/data/custommail.json b/gestioncof/management/data/custommail.json
index 9ee9b1ea..bf59e5f6 100644
--- a/gestioncof/management/data/custommail.json
+++ b/gestioncof/management/data/custommail.json
@@ -151,7 +151,7 @@
         "shortname": "bda-revente",
         "subject": "{{ show }}",
         "description": "Notification envoy\u00e9e \u00e0 toutes les personnes int\u00e9ress\u00e9es par un spectacle pour le signaler qu'une place vient d'\u00eatre mise en vente.",
-        "body": "Bonjour {{ member.first_name }}\r\n\r\nUne place pour le spectacle {{ show.title }} ({{ show.date }})\r\na \u00e9t\u00e9 post\u00e9e sur BdA-Revente.\r\n\r\nSi ce spectacle t'int\u00e9resse toujours, merci de nous le signaler en cliquant\r\nsur ce lien : http://{{ site }}{% url \"bda-revente-interested\" revente.id %}.\r\nDans le cas o\u00f9 plusieurs personnes seraient int\u00e9ress\u00e9es, nous proc\u00e8derons \u00e0\r\nun tirage au sort le {{ revente.date_tirage|date:\"DATE_FORMAT\" }}.\r\n\r\nChaleureusement,\r\nLe BdA"
+        "body": "Bonjour {{ member.first_name }}\r\n\r\nUne place pour le spectacle {{ show.title }} ({{ show.date }})\r\na \u00e9t\u00e9 post\u00e9e sur BdA-Revente.\r\n\r\nSi ce spectacle t'int\u00e9resse toujours, merci de nous le signaler en cliquant\r\nsur ce lien : http://{{ site }}{% url \"bda-revente-confirm\" revente.id %}.\r\nDans le cas o\u00f9 plusieurs personnes seraient int\u00e9ress\u00e9es, nous proc\u00e8derons \u00e0\r\nun tirage au sort le {{ revente.date_tirage|date:\"DATE_FORMAT\" }}.\r\n\r\nChaleureusement,\r\nLe BdA"
     }
 },
 {
diff --git a/gestioncof/templates/home.html b/gestioncof/templates/home.html
index f7ca57b5..943ef780 100644
--- a/gestioncof/templates/home.html
+++ b/gestioncof/templates/home.html
@@ -43,10 +43,10 @@
                             <li><a href="{% url "bda-etat-places" tirage.id %}">État des demandes</a></li>
                         {% else %}
                             <li><a href="{% url "bda-places-attribuees" tirage.id %}">Mes places</a></li> 
-                            <li><a href="{% url "bda-revente" tirage.id %}">Gestion de mes reventes</a></li> 
+                            <li><a href="{% url "bda-revente-manage" tirage.id %}">Gestion de mes reventes</a></li> 
                             <li><a href="{% url "bda-revente-tirages" tirage.id %}">Reventes en cours</a></li> 
-                            <li><a href="{% url "bda-liste-revente" tirage.id %}">S'inscrire à BdA-Revente</a></li>
-                            <li><a href="{% url "bda-shotgun" tirage.id %}">Places disponibles immédiatement</a></li>
+                            <li><a href="{% url "bda-revente-subscribe" tirage.id %}">S'inscrire à BdA-Revente</a></li>
+                            <li><a href="{% url "bda-revente-shotgun" tirage.id %}">Places disponibles immédiatement</a></li>
                         {% endif %}
                     </ul> 
                 {% endfor %}

From 919bcd197d077767bdc07355a70a84d39f8ebecf Mon Sep 17 00:00:00 2001
From: Ludovic Stephan <lstephan@clipper.ens.fr>
Date: Mon, 23 Oct 2017 18:59:30 +0200
Subject: [PATCH 034/101] Small code QoL improvements

---
 bda/models.py | 10 ++++++++++
 bda/views.py  | 10 ++--------
 2 files changed, 12 insertions(+), 8 deletions(-)

diff --git a/bda/models.py b/bda/models.py
index 41462d70..5533e3bb 100644
--- a/bda/models.py
+++ b/bda/models.py
@@ -252,6 +252,16 @@ class SpectacleRevente(models.Model):
     class Meta:
         verbose_name = "Revente"
 
+    def reset(self):
+        """Réinitialise la revente pour permettre une remise sur le marché"""
+        self.seller = self.attribution.participant
+        self.date = timezone.now()
+        self.answered_mail.clear()
+        self.soldTo = None
+        self.notif_sent = False
+        self.tirage_done = False
+        self.shotgun = False
+
     def send_notif(self):
         """
         Envoie une notification pour indiquer la mise en vente d'une place sur
diff --git a/bda/views.py b/bda/views.py
index c0e64230..311d530a 100644
--- a/bda/views.py
+++ b/bda/views.py
@@ -375,13 +375,7 @@ def revente_manage(request, tirage_id):
                                 attribution=attribution,
                                 defaults={'seller': participant})
                         if not created:
-                            revente.seller = participant
-                            revente.date = timezone.now()
-                            revente.wanted = Participant.objects.none()
-                            revente.soldTo = None
-                            revente.notif_sent = False
-                            revente.tirage_done = False
-                            revente.shotgun = False
+                            revente.reset()
                         context = {
                             'vendeur': participant.user,
                             'show': attribution.spectacle,
@@ -495,7 +489,7 @@ def revente_confirm(request, revente_id):
     revente = get_object_or_404(SpectacleRevente, id=revente_id)
     participant, _ = Participant.objects.get_or_create(
         user=request.user, tirage=revente.attribution.spectacle.tirage)
-    if (timezone.now() < revente.date + timedelta(hours=1)) or revente.shotgun:
+    if not revente.notif_sent or revente.shotgun:
         return render(request, "bda/revente/wrongtime.html",
                       {"revente": revente})
 

From 1b0e4285ecbc7ea224cb7fad9c725365d4a9ba01 Mon Sep 17 00:00:00 2001
From: Ludovic Stephan <lstephan@clipper.ens.fr>
Date: Mon, 23 Oct 2017 20:26:07 +0200
Subject: [PATCH 035/101] Reverse match fix

---
 gestioncof/management/data/custommail.json | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/gestioncof/management/data/custommail.json b/gestioncof/management/data/custommail.json
index bf59e5f6..029c03e0 100644
--- a/gestioncof/management/data/custommail.json
+++ b/gestioncof/management/data/custommail.json
@@ -161,7 +161,7 @@
         "shortname": "bda-shotgun",
         "subject": "{{ show }}",
         "description": "Notification signalant qu'une place est au shotgun aux personnes int\u00e9ress\u00e9es.",
-        "body": "Bonjour {{ member.first_name }}\r\n\r\nUne place pour le spectacle {{ show.title }} ({{ show.date }})\r\na \u00e9t\u00e9 post\u00e9e sur BdA-Revente.\r\n\r\nPuisque ce spectacle a lieu dans moins de 24h, il n'y a pas de tirage au sort pour\r\ncette place : elle est disponible imm\u00e9diatement \u00e0 l'adresse\r\nhttp://{{ site }}{% url \"bda-buy-revente\" show.id %}, \u00e0 la disposition de tous.\r\n\r\nChaleureusement,\r\nLe BdA"
+        "body": "Bonjour {{ member.first_name }}\r\n\r\nUne place pour le spectacle {{ show.title }} ({{ show.date }})\r\na \u00e9t\u00e9 post\u00e9e sur BdA-Revente.\r\n\r\nPuisque ce spectacle a lieu dans moins de 24h, il n'y a pas de tirage au sort pour\r\ncette place : elle est disponible imm\u00e9diatement \u00e0 l'adresse\r\nhttp://{{ site }}{% url \"bda-revente-buy\" show.id %}, \u00e0 la disposition de tous.\r\n\r\nChaleureusement,\r\nLe BdA"
     }
 },
 {

From 684603709e90e471f5528ab35f1efc2011145fb5 Mon Sep 17 00:00:00 2001
From: Ludovic Stephan <lstephan@clipper.ens.fr>
Date: Mon, 23 Oct 2017 20:30:11 +0200
Subject: [PATCH 036/101] Class attributes and properties + more verbose log

SpectacleRevente gets brand new properties and attributes to simplify
code ; also, manage_reventes command output is more verbose
---
 bda/management/commands/manage_reventes.py | 48 ++++++++++++++--------
 bda/models.py                              | 45 +++++++++++++++++---
 2 files changed, 69 insertions(+), 24 deletions(-)

diff --git a/bda/management/commands/manage_reventes.py b/bda/management/commands/manage_reventes.py
index 0302ec4b..5a767604 100644
--- a/bda/management/commands/manage_reventes.py
+++ b/bda/management/commands/manage_reventes.py
@@ -6,7 +6,6 @@ Gestion en ligne de commande des reventes.
 
 from __future__ import unicode_literals
 
-from datetime import timedelta
 from django.core.management import BaseCommand
 from django.utils import timezone
 from bda.models import SpectacleRevente
@@ -21,23 +20,36 @@ class Command(BaseCommand):
         now = timezone.now()
         reventes = SpectacleRevente.objects.all()
         for revente in reventes:
-            # Check si < 24h
-            if (revente.attribution.spectacle.date <=
-                    revente.date + timedelta(days=1)) and \
-                    now >= revente.date + timedelta(minutes=15) and \
-                    not revente.notif_sent:
-                self.stdout.write(str(now))
-                revente.mail_shotgun()
-                self.stdout.write("Mail de disponibilité immédiate envoyé")
-            # Check si délai de retrait dépassé
-            elif (now >= revente.date + timedelta(hours=1) and
-                  not revente.notif_sent):
+            # Le spectacle est bientôt et on a pas encore envoyé de mail :
+            # on met la place au shotgun et on prévient.
+            if revente.is_urgent and not revente.notif_sent:
+                if revente.can_notif:
+                    self.stdout.write(str(now))
+                    revente.mail_shotgun()
+                    self.stdout.write(
+                        "Mails de disponibilité immédiate envoyés "
+                        "pour la revente [%s]" % revente
+                    )
+
+            # Le spectacle est dans plus longtemps : on prévient
+            elif (revente.can_notif and not revente.notif_sent):
                 self.stdout.write(str(now))
                 revente.send_notif()
-                self.stdout.write("Mail d'inscription à une revente envoyé")
-            # Check si tirage à faire
-            elif (now >= revente.date_tirage and
-                  not revente.tirage_done):
+                self.stdout.write(
+                        "Mails d'inscription à la revente [%s] envoyés"
+                        % revente
+                )
+
+            # On fait le tirage
+            elif (now >= revente.date_tirage and not revente.tirage_done):
                 self.stdout.write(str(now))
-                revente.tirage()
-                self.stdout.write("Tirage effectué, mails envoyés")
+                winner = revente.tirage()
+                self.stdout.write(
+                    "Tirage effectué pour la revente [%s]"
+                    % revente
+                )
+
+                if winner:
+                    self.stdout.write("Gagnant : %s" % winner.user)
+                else:
+                    self.stdout.write("Pas de gagnant ; place au shotgun")
diff --git a/bda/models.py b/bda/models.py
index 5533e3bb..b2882900 100644
--- a/bda/models.py
+++ b/bda/models.py
@@ -233,17 +233,46 @@ class SpectacleRevente(models.Model):
                                       default=False)
     shotgun = models.BooleanField("Disponible immédiatement",
                                   default=False)
+    ####
+    # Some class attributes
+    ###
+    # TODO : settings ?
+
+    # Temps minimum entre le tirage et le spectacle
+    min_margin = timedelta(days=5)
+
+    # Temps entre la création d'une revente et l'envoi du mail
+    remorse_time = timedelta(hours=1)
+
+    # Temps min/max d'attente avant le tirage
+    max_wait_time = timedelta(days=3)
+    min_wait_time = timedelta(days=1)
 
     @property
     def date_tirage(self):
         """Renvoie la date du tirage au sort de la revente."""
-        # L'acheteur doit être connu au plus 12h avant le spectacle
+        notif_time = self.date + self.remorse_time
+
         remaining_time = (self.attribution.spectacle.date
-                          - self.date - timedelta(hours=13))
-        # Au minimum, on attend 2 jours avant le tirage
-        delay = min(remaining_time, timedelta(days=2))
-        # Le vendeur a aussi 1h pour changer d'avis
-        return self.date + delay + timedelta(hours=1)
+                          - notif_time - self.min_margin)
+
+        delay = min(remaining_time, self.max_wait_time)
+
+        return notif_time + delay
+
+    @property
+    def is_urgent(self):
+        """
+        Renvoie True iff la revente doit être mise au shotgun directement.
+        Plus précisément, on doit avoir min_margin + min_wait_time de marge.
+        """
+        spectacle_date = self.attribution.spectacle.date
+        return (spectacle_date <= timezone.now() + self.min_margin
+                + self.min_wait_time)
+
+    @property
+    def can_notif(self):
+        return (timezone.now() >= self.date + self.remorse_time)
 
     def __str__(self):
         return "%s -- %s" % (self.seller,
@@ -353,8 +382,12 @@ class SpectacleRevente(models.Model):
                         [inscrit.user.email]
                     ))
             send_mass_custom_mail(datatuple)
+
+            return winner
+
         # Si personne ne veut de la place, elle part au shotgun
         else:
             self.shotgun = True
+            return None
         self.tirage_done = True
         self.save()

From 6a6549e0d72937d9f5adaf7bf43ff090150b4891 Mon Sep 17 00:00:00 2001
From: Ludovic Stephan <lstephan@clipper.ens.fr>
Date: Mon, 23 Oct 2017 20:52:25 +0200
Subject: [PATCH 037/101] Add notif time

In case of a gestioCOF bug, we keep the notification time in memory to
still do the drawing 1-3 days after.
---
 bda/admin.py                      |  6 +++---
 bda/forms.py                      |  4 ++--
 bda/migrations/0012_notif_time.py | 28 ++++++++++++++++++++++++++++
 bda/models.py                     | 29 +++++++++++++++++++++--------
 bda/views.py                      | 14 +++++++-------
 5 files changed, 61 insertions(+), 20 deletions(-)
 create mode 100644 bda/migrations/0012_notif_time.py

diff --git a/bda/admin.py b/bda/admin.py
index 60d3c1ba..4f5d821a 100644
--- a/bda/admin.py
+++ b/bda/admin.py
@@ -225,7 +225,7 @@ class SpectacleReventeAdminForm(forms.ModelForm):
 
     def __init__(self, *args, **kwargs):
         super().__init__(*args, **kwargs)
-        self.fields['answered_mail'].queryset = (
+        self.fields['confirmed_entry'].queryset = (
             Participant.objects
             .select_related('user', 'tirage')
         )
@@ -292,8 +292,8 @@ class SpectacleReventeAdmin(admin.ModelAdmin):
             revente.soldTo = None
             revente.notif_sent = False
             revente.tirage_done = False
-            if revente.answered_mail:
-                revente.answered_mail.clear()
+            if revente.confirmed_entry:
+                revente.confirmed_entry.clear()
             revente.save()
         self.message_user(
             request,
diff --git a/bda/forms.py b/bda/forms.py
index 139ef45d..11d05b0e 100644
--- a/bda/forms.py
+++ b/bda/forms.py
@@ -110,7 +110,7 @@ class ReventeTirageAnnulForm(forms.Form):
     def __init__(self, participant, *args, **kwargs):
         super().__init__(*args, **kwargs)
         self.fields['reventes'].queryset = (
-            participant.wanted.filter(soldTo__isnull=True)
+            participant.entered.filter(soldTo__isnull=True)
                        .select_related('attribution__spectacle')
         )
 
@@ -130,7 +130,7 @@ class ReventeTirageForm(forms.Form):
                 notif_sent=True,
                 shotgun=False,
                 tirage_done=False
-            ).exclude(answered_mail=participant)
+            ).exclude(confirmed_entry=participant)
             .select_related('attribution__spectacle')
         )
 
diff --git a/bda/migrations/0012_notif_time.py b/bda/migrations/0012_notif_time.py
new file mode 100644
index 00000000..be66efd1
--- /dev/null
+++ b/bda/migrations/0012_notif_time.py
@@ -0,0 +1,28 @@
+# -*- coding: utf-8 -*-
+from __future__ import unicode_literals
+
+from django.db import migrations, models
+
+
+class Migration(migrations.Migration):
+
+    dependencies = [
+        ('bda', '0011_tirage_appear_catalogue'),
+    ]
+
+    operations = [
+        migrations.RemoveField(
+            model_name='spectaclerevente',
+            name='answered_mail',
+        ),
+        migrations.AddField(
+            model_name='spectaclerevente',
+            name='confirmed_entry',
+            field=models.ManyToManyField(blank=True, related_name='entered', to='bda.Participant'),
+        ),
+        migrations.AddField(
+            model_name='spectaclerevente',
+            name='notif_time',
+            field=models.DateTimeField(blank=True, verbose_name="Moment d'envoi de la notification", null=True),
+        ),
+    ]
diff --git a/bda/models.py b/bda/models.py
index b2882900..2ad47dbf 100644
--- a/bda/models.py
+++ b/bda/models.py
@@ -218,9 +218,9 @@ class SpectacleRevente(models.Model):
                                        related_name="revente")
     date = models.DateTimeField("Date de mise en vente",
                                 default=timezone.now)
-    answered_mail = models.ManyToManyField(Participant,
-                                           related_name="wanted",
-                                           blank=True)
+    confirmed_entry = models.ManyToManyField(Participant,
+                                             related_name="entered",
+                                             blank=True)
     seller = models.ForeignKey(Participant,
                                related_name="original_shows",
                                verbose_name="Vendeur")
@@ -229,8 +229,13 @@ class SpectacleRevente(models.Model):
 
     notif_sent = models.BooleanField("Notification envoyée",
                                      default=False)
+
+    notif_time = models.DateTimeField("Moment d'envoi de la notification",
+                                      blank=True, null=True)
+
     tirage_done = models.BooleanField("Tirage effectué",
                                       default=False)
+
     shotgun = models.BooleanField("Disponible immédiatement",
                                   default=False)
     ####
@@ -248,17 +253,23 @@ class SpectacleRevente(models.Model):
     max_wait_time = timedelta(days=3)
     min_wait_time = timedelta(days=1)
 
+    @property
+    def real_notif_time(self):
+        if self.notif_time:
+            return self.notif_time
+        else:
+            return self.date + self.remorse_time
+
     @property
     def date_tirage(self):
         """Renvoie la date du tirage au sort de la revente."""
-        notif_time = self.date + self.remorse_time
 
         remaining_time = (self.attribution.spectacle.date
-                          - notif_time - self.min_margin)
+                          - self.real_notif_time - self.min_margin)
 
         delay = min(remaining_time, self.max_wait_time)
 
-        return notif_time + delay
+        return self.real_notif_time + delay
 
     @property
     def is_urgent(self):
@@ -285,7 +296,7 @@ class SpectacleRevente(models.Model):
         """Réinitialise la revente pour permettre une remise sur le marché"""
         self.seller = self.attribution.participant
         self.date = timezone.now()
-        self.answered_mail.clear()
+        self.confirmed_entry.clear()
         self.soldTo = None
         self.notif_sent = False
         self.tirage_done = False
@@ -311,6 +322,7 @@ class SpectacleRevente(models.Model):
         ]
         send_mass_custom_mail(datatuple)
         self.notif_sent = True
+        self.notif_time = timezone.now()
         self.save()
 
     def mail_shotgun(self):
@@ -332,6 +344,7 @@ class SpectacleRevente(models.Model):
         ]
         send_mass_custom_mail(datatuple)
         self.notif_sent = True
+        self.notif_time = timezone.now()
         # Flag inutile, sauf si l'horloge interne merde
         self.tirage_done = True
         self.shotgun = True
@@ -343,7 +356,7 @@ class SpectacleRevente(models.Model):
         parmis les personnes intéressées par le spectacle. Les personnes sont
         ensuites prévenues par mail du résultat du tirage.
         """
-        inscrits = list(self.answered_mail.all())
+        inscrits = list(self.confirmed_entry.all())
         spectacle = self.attribution.spectacle
         seller = self.seller
 
diff --git a/bda/views.py b/bda/views.py
index 311d530a..6ed22b21 100644
--- a/bda/views.py
+++ b/bda/views.py
@@ -420,8 +420,8 @@ def revente_manage(request, tirage_id):
                         revente.notif_sent = False
                         revente.tirage_done = False
                         revente.shotgun = False
-                        if revente.answered_mail:
-                            revente.answered_mail.clear()
+                        if revente.confirmed_entry:
+                            revente.confirmed_entry.clear()
                         revente.save()
 
     overdue = participant.attribution_set.filter(
@@ -454,7 +454,7 @@ def revente_tirages(request, tirage_id):
                 sub = 0
                 reventes = subform.cleaned_data['reventes']
                 for revente in reventes:
-                    revente.answered_mail.add(participant)
+                    revente.confirmed_entry.add(participant)
                     sub += 1
                 if sub > 0:
                     plural = "s" if sub > 1 else ""
@@ -470,7 +470,7 @@ def revente_tirages(request, tirage_id):
                 unsub = 0
                 reventes = annulform.cleaned_data['reventes']
                 for revente in reventes:
-                    revente.answered_mail.remove(participant)
+                    revente.confirmed_entry.remove(participant)
                     unsub += 1
                 if unsub > 0:
                     plural = "s" if unsub > 1 else ""
@@ -493,7 +493,7 @@ def revente_confirm(request, revente_id):
         return render(request, "bda/revente/wrongtime.html",
                       {"revente": revente})
 
-    revente.answered_mail.add(participant)
+    revente.confirmed_entry.add(participant)
     return render(request, "bda/revente/confirmed.html",
                   {"spectacle": revente.attribution.spectacle,
                    "date": revente.date_tirage})
@@ -526,12 +526,12 @@ def revente_subscribe(request, tirage_id):
                     # la revente ayant le moins d'inscrits
                     min_resell = (
                         qset.filter(shotgun=False)
-                        .annotate(nb_subscribers=Count('answered_mail'))
+                        .annotate(nb_subscribers=Count('confirmed_entry'))
                         .order_by('nb_subscribers')
                         .first()
                     )
                     if min_resell is not None:
-                        min_resell.answered_mail.add(participant)
+                        min_resell.confirmed_entry.add(participant)
                         inscrit_revente.append(spectacle)
             success = True
     else:

From 8b1f174b13f98c0bccb6a04d4e8bbb2f7d71b329 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Aur=C3=A9lien=20Delobelle?= <aurelien.delobelle@gmail.com>
Date: Tue, 24 Oct 2017 16:46:15 +0200
Subject: [PATCH 038/101] manage.py is executable

---
 manage.py | 0
 1 file changed, 0 insertions(+), 0 deletions(-)
 mode change 100644 => 100755 manage.py

diff --git a/manage.py b/manage.py
old mode 100644
new mode 100755

From 8673da18742fea41d8902f45170089cdc6fd5a87 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Aur=C3=A9lien=20Delobelle?= <aurelien.delobelle@gmail.com>
Date: Tue, 24 Oct 2017 16:51:54 +0200
Subject: [PATCH 039/101] Fix migration conflict

---
 .../{0058_amend_supplier.py => 0060_amend_supplier.py}          | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)
 rename kfet/migrations/{0058_amend_supplier.py => 0060_amend_supplier.py} (96%)

diff --git a/kfet/migrations/0058_amend_supplier.py b/kfet/migrations/0060_amend_supplier.py
similarity index 96%
rename from kfet/migrations/0058_amend_supplier.py
rename to kfet/migrations/0060_amend_supplier.py
index 764322b0..4eb569f8 100644
--- a/kfet/migrations/0058_amend_supplier.py
+++ b/kfet/migrations/0060_amend_supplier.py
@@ -7,7 +7,7 @@ from django.db import migrations, models
 class Migration(migrations.Migration):
 
     dependencies = [
-        ('kfet', '0057_merge'),
+        ('kfet', '0059_create_generic'),
     ]
 
     operations = [

From 1cc51f17a390d88a75895bb09691e9244aa8989e Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Aur=C3=A9lien=20Delobelle?= <aurelien.delobelle@gmail.com>
Date: Tue, 24 Oct 2017 17:55:02 +0200
Subject: [PATCH 040/101] Prevent connection to LDAP when settings is None

---
 gestioncof/autocomplete.py | 2 +-
 kfet/autocomplete.py       | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/gestioncof/autocomplete.py b/gestioncof/autocomplete.py
index 3532525d..968398fd 100644
--- a/gestioncof/autocomplete.py
+++ b/gestioncof/autocomplete.py
@@ -58,7 +58,7 @@ def autocomplete(request):
     )
 
     # Fetching data from the SPI
-    if hasattr(settings, 'LDAP_SERVER_URL'):
+    if getattr(settings, 'LDAP_SERVER_URL', None):
         # Fetching
         ldap_query = '(&{:s})'.format(''.join(
             '(|(cn=*{bit:s}*)(uid=*{bit:s}*))'.format(bit=bit)
diff --git a/kfet/autocomplete.py b/kfet/autocomplete.py
index 0a9bb42c..c4886180 100644
--- a/kfet/autocomplete.py
+++ b/kfet/autocomplete.py
@@ -76,7 +76,7 @@ def account_create(request):
         queries['users_notcof'].values_list('username', flat=True))
 
     # Fetching data from the SPI
-    if hasattr(settings, 'LDAP_SERVER_URL'):
+    if getattr(settings, 'LDAP_SERVER_URL', None):
         # Fetching
         ldap_query = '(&{:s})'.format(''.join(
             '(|(cn=*{bit:s}*)(uid=*{bit:s}*))'.format(bit=word)

From af3a7cf6971bfead6541f76048f61dc0407fb5e2 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Aur=C3=A9lien=20Delobelle?= <aurelien.delobelle@gmail.com>
Date: Tue, 24 Oct 2017 17:56:14 +0200
Subject: [PATCH 041/101] =?UTF-8?q?Reapply=20fix=20to=20kfetauth=20(?=
 =?UTF-8?q?=E2=80=A6)=20and=20fix=20tests?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 kfet/auth/forms.py       |  4 ++++
 kfet/tests/test_views.py | 14 --------------
 kfet/views.py            |  2 +-
 3 files changed, 5 insertions(+), 15 deletions(-)

diff --git a/kfet/auth/forms.py b/kfet/auth/forms.py
index 0c9fa53b..876e8814 100644
--- a/kfet/auth/forms.py
+++ b/kfet/auth/forms.py
@@ -18,6 +18,8 @@ class GroupForm(forms.ModelForm):
         # other_groups = self.instance.permissions.difference(
         #     self.fields['permissions'].queryset
         # )
+        if self.instance.pk is None:
+            return kfet_perms
         other_perms = self.instance.permissions.exclude(
             pk__in=[p.pk for p in self.fields['permissions'].queryset],
         )
@@ -36,6 +38,8 @@ class UserGroupForm(forms.ModelForm):
 
     def clean_groups(self):
         kfet_groups = self.cleaned_data.get('groups')
+        if self.instance.pk is None:
+            return kfet_groups
         other_groups = self.instance.groups.exclude(name__icontains='K-Fêt')
         return list(kfet_groups) + list(other_groups)
 
diff --git a/kfet/tests/test_views.py b/kfet/tests/test_views.py
index ff9803c9..c7ed5dda 100644
--- a/kfet/tests/test_views.py
+++ b/kfet/tests/test_views.py
@@ -18,20 +18,6 @@ from .testcases import ViewTestCaseMixin
 from .utils import create_team, create_user, get_perms
 
 
-class LoginGenericTeamViewTests(ViewTestCaseMixin, TestCase):
-    url_name = 'kfet.login.genericteam'
-    url_expected = '/k-fet/login/genericteam'
-
-    auth_user = 'team'
-    auth_forbidden = [None, 'user']
-
-    def test_ok(self):
-        r = self.client.get(self.url)
-        self.assertEqual(r.status_code, 200)
-        logged_in = r.wsgi_request.user
-        self.assertEqual(logged_in.username, 'kfet_genericteam')
-
-
 class AccountListViewTests(ViewTestCaseMixin, TestCase):
     url_name = 'kfet.account'
     url_expected = '/k-fet/accounts/'
diff --git a/kfet/views.py b/kfet/views.py
index 7a28819e..f1dd6834 100644
--- a/kfet/views.py
+++ b/kfet/views.py
@@ -12,7 +12,7 @@ from django.views.generic.edit import CreateView, UpdateView
 from django.core.urlresolvers import reverse, reverse_lazy
 from django.contrib import messages
 from django.contrib.messages.views import SuccessMessageMixin
-from django.contrib.auth.decorators import login_required
+from django.contrib.auth.decorators import login_required, permission_required
 from django.contrib.auth.models import User, Permission
 from django.http import JsonResponse, Http404
 from django.forms import formset_factory

From 8e8e9aa0764b911c8eb1e6726e4a120e6fb40d62 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Aur=C3=A9lien=20Delobelle?= <aurelien.delobelle@gmail.com>
Date: Tue, 24 Oct 2017 19:19:57 +0200
Subject: [PATCH 042/101] Fix migration history

---
 kfet/migrations/0057_merge.py                                  | 3 +--
 .../{0057_add_perms_config.py => 0061_add_perms_config.py}     | 2 +-
 2 files changed, 2 insertions(+), 3 deletions(-)
 rename kfet/migrations/{0057_add_perms_config.py => 0061_add_perms_config.py} (94%)

diff --git a/kfet/migrations/0057_merge.py b/kfet/migrations/0057_merge.py
index e3cadb23..48f63399 100644
--- a/kfet/migrations/0057_merge.py
+++ b/kfet/migrations/0057_merge.py
@@ -1,13 +1,12 @@
 # -*- coding: utf-8 -*-
 from __future__ import unicode_literals
 
-from django.db import migrations
+from django.db import migrations, models
 
 
 class Migration(migrations.Migration):
 
     dependencies = [
-        ('kfet', '0057_add_perms_config'),
         ('kfet', '0056_change_account_meta'),
         ('kfet', '0054_update_promos'),
     ]
diff --git a/kfet/migrations/0057_add_perms_config.py b/kfet/migrations/0061_add_perms_config.py
similarity index 94%
rename from kfet/migrations/0057_add_perms_config.py
rename to kfet/migrations/0061_add_perms_config.py
index 1300665f..01bdf51d 100644
--- a/kfet/migrations/0057_add_perms_config.py
+++ b/kfet/migrations/0061_add_perms_config.py
@@ -7,7 +7,7 @@ from django.db import migrations, models
 class Migration(migrations.Migration):
 
     dependencies = [
-        ('kfet', '0056_change_account_meta'),
+        ('kfet', '0060_amend_supplier'),
     ]
 
     operations = [

From a07b5308a322ac03b3f252b4a74b025ed1f0c1d2 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Martin=20P=C3=A9pin?= <martin.pepin@ens.fr>
Date: Wed, 25 Oct 2017 22:01:58 +0200
Subject: [PATCH 043/101] PetitCoursAttributionCounter defaults to 0

---
 gestioncof/petits_cours_models.py | 6 ++++--
 1 file changed, 4 insertions(+), 2 deletions(-)

diff --git a/gestioncof/petits_cours_models.py b/gestioncof/petits_cours_models.py
index 753e8674..d9ea9668 100644
--- a/gestioncof/petits_cours_models.py
+++ b/gestioncof/petits_cours_models.py
@@ -157,14 +157,16 @@ class PetitCoursAttributionCounter(models.Model):
         compteurs de tout le monde.
         """
         counter, created = cls.objects.get_or_create(
-            user=user, matiere=matiere)
+            user=user,
+            matiere=matiere,
+        )
         if created:
             mincount = (
                 cls.objects.filter(matiere=matiere).exclude(user=user)
                 .aggregate(Min('count'))
                 ['count__min']
             )
-            counter.count = mincount
+            counter.count = mincount or 0
             counter.save()
         return counter
 

From 40abe27e8185f843ed2d313c978701832fe0543b Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Martin=20P=C3=A9pin?= <martin.pepin@ens.fr>
Date: Wed, 25 Oct 2017 22:05:14 +0200
Subject: [PATCH 044/101] EMAIL_HOST needs to be set but as a secret

---
 cof/settings/common.py         | 1 +
 cof/settings/secret_example.py | 1 +
 2 files changed, 2 insertions(+)

diff --git a/cof/settings/common.py b/cof/settings/common.py
index f92dc83b..a2ea3f5e 100644
--- a/cof/settings/common.py
+++ b/cof/settings/common.py
@@ -31,6 +31,7 @@ def import_secret(name):
 SECRET_KEY = import_secret("SECRET_KEY")
 ADMINS = import_secret("ADMINS")
 SERVER_EMAIL = import_secret("SERVER_EMAIL")
+EMAIL_HOST = import_secret("EMAIL_HOST")
 
 DBNAME = import_secret("DBNAME")
 DBUSER = import_secret("DBUSER")
diff --git a/cof/settings/secret_example.py b/cof/settings/secret_example.py
index e9c0e63c..e966565a 100644
--- a/cof/settings/secret_example.py
+++ b/cof/settings/secret_example.py
@@ -1,6 +1,7 @@
 SECRET_KEY = 'q()(zn4m63i%5cp4)f+ww4-28_w+ly3q9=6imw2ciu&_(5_4ah'
 ADMINS = None
 SERVER_EMAIL = "root@vagrant"
+EMAIL_HOST = "localhost"
 
 DBUSER = "cof_gestion"
 DBNAME = "cof_gestion"

From 1a136088bfa8892eebde77cb5aa8619dd342b3ef Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Martin=20P=C3=A9pin?= <martin.pepin@ens.fr>
Date: Wed, 25 Oct 2017 22:08:29 +0200
Subject: [PATCH 045/101] Add missing type in custommail (dev only)

---
 gestioncof/management/data/custommail.json | 655 +++++++++++----------
 1 file changed, 334 insertions(+), 321 deletions(-)

diff --git a/gestioncof/management/data/custommail.json b/gestioncof/management/data/custommail.json
index 9ee9b1ea..590ebf18 100644
--- a/gestioncof/management/data/custommail.json
+++ b/gestioncof/management/data/custommail.json
@@ -1,587 +1,600 @@
 [
 {
-    "model": "custommail.variabletype",
-    "pk": 1,
+    "model": "custommail.type",
     "fields": {
+        "kind": "model",
         "content_type": [
             "auth",
             "user"
         ],
         "inner1": null,
-        "kind": "model",
         "inner2": null
-    }
+    },
+    "pk": 1
 },
 {
-    "model": "custommail.variabletype",
-    "pk": 2,
+    "model": "custommail.type",
     "fields": {
+        "kind": "int",
         "content_type": null,
         "inner1": null,
-        "kind": "int",
         "inner2": null
-    }
+    },
+    "pk": 2
 },
 {
-    "model": "custommail.variabletype",
-    "pk": 3,
+    "model": "custommail.type",
     "fields": {
+        "kind": "model",
         "content_type": [
             "bda",
             "spectacle"
         ],
         "inner1": null,
-        "kind": "model",
         "inner2": null
-    }
+    },
+    "pk": 3
 },
 {
-    "model": "custommail.variabletype",
-    "pk": 4,
+    "model": "custommail.type",
     "fields": {
+        "kind": "model",
         "content_type": [
             "bda",
             "spectaclerevente"
         ],
         "inner1": null,
-        "kind": "model",
         "inner2": null
-    }
+    },
+    "pk": 4
 },
 {
-    "model": "custommail.variabletype",
-    "pk": 5,
+    "model": "custommail.type",
     "fields": {
+        "kind": "model",
         "content_type": [
             "sites",
             "site"
         ],
         "inner1": null,
-        "kind": "model",
         "inner2": null
-    }
+    },
+    "pk": 5
 },
 {
-    "model": "custommail.variabletype",
-    "pk": 6,
+    "model": "custommail.type",
     "fields": {
+        "kind": "model",
         "content_type": [
             "gestioncof",
             "petitcoursdemande"
         ],
         "inner1": null,
-        "kind": "model",
         "inner2": null
-    }
+    },
+    "pk": 6
 },
 {
-    "model": "custommail.variabletype",
-    "pk": 7,
+    "model": "custommail.type",
     "fields": {
-        "content_type": null,
-        "inner1": null,
         "kind": "list",
+        "content_type": null,
+        "inner1": 12,
         "inner2": null
-    }
+    },
+    "pk": 7
 },
 {
-    "model": "custommail.variabletype",
-    "pk": 8,
+    "model": "custommail.type",
     "fields": {
+        "kind": "list",
         "content_type": null,
         "inner1": 1,
-        "kind": "list",
         "inner2": null
-    }
+    },
+    "pk": 8
 },
 {
-    "model": "custommail.variabletype",
-    "pk": 9,
+    "model": "custommail.type",
     "fields": {
-        "content_type": null,
-        "inner1": null,
         "kind": "pair",
+        "content_type": null,
+        "inner1": 12,
         "inner2": 8
-    }
+    },
+    "pk": 9
 },
 {
-    "model": "custommail.variabletype",
-    "pk": 10,
+    "model": "custommail.type",
     "fields": {
+        "kind": "list",
         "content_type": null,
         "inner1": 9,
-        "kind": "list",
         "inner2": null
-    }
+    },
+    "pk": 10
 },
 {
-    "model": "custommail.variabletype",
-    "pk": 11,
+    "model": "custommail.type",
     "fields": {
+        "kind": "list",
         "content_type": null,
         "inner1": 3,
-        "kind": "list",
         "inner2": null
-    }
+    },
+    "pk": 11
+},
+{
+    "model": "custommail.type",
+    "fields": {
+        "kind": "model",
+        "content_type": [
+            "gestioncof",
+            "petitcourssubject"
+        ],
+        "inner1": null,
+        "inner2": null
+    },
+    "pk": 12
 },
 {
     "model": "custommail.custommail",
-    "pk": 1,
     "fields": {
         "shortname": "welcome",
         "subject": "Bienvenue au COF",
-        "description": "Mail de bienvenue au COF envoy\u00e9 automatiquement \u00e0 l'inscription d'un nouveau membre",
-        "body": "Bonjour {{ member.first_name }} et bienvenue au COF !\r\n\r\nTu trouveras plein de trucs cool sur le site du COF : https://www.cof.ens.fr/ et notre page Facebook : https://www.facebook.com/cof.ulm\r\nEt n'oublie pas d'aller d\u00e9couvrir GestioCOF, la plateforme de gestion du COF !\r\nSi tu as des questions, tu peux nous envoyer un mail \u00e0 cof@ens.fr (on aime le spam), ou passer nous voir au Bur\u00f4 pr\u00e8s de la Cour\u00f4 du lundi au vendredi de 12h \u00e0 14h et de 18h \u00e0 20h.\r\n\r\nRetrouvez les \u00e9v\u00e8nements de rentr\u00e9e pour les conscrit.e.s et les vieux/vieilles organis\u00e9s par le COF et ses clubs ici :  http://www.cof.ens.fr/depot/Rentree.pdf \r\n\r\nAmicalement,\r\n\r\nTon COF qui t'aime."
-    }
+        "body": "Bonjour {{ member.first_name }} et bienvenue au COF !\r\n\r\nTu trouveras plein de trucs cool sur le site du COF : https://www.cof.ens.fr/ et notre page Facebook : https://www.facebook.com/cof.ulm\r\nEt n'oublie pas d'aller d\u00e9couvrir GestioCOF, la plateforme de gestion du COF !\r\nSi tu as des questions, tu peux nous envoyer un mail \u00e0 cof@ens.fr (on aime le spam), ou passer nous voir au Bur\u00f4 pr\u00e8s de la Cour\u00f4 du lundi au vendredi de 12h \u00e0 14h et de 18h \u00e0 20h.\r\n\r\nRetrouvez les \u00e9v\u00e8nements de rentr\u00e9e pour les conscrit.e.s et les vieux/vieilles organis\u00e9s par le COF et ses clubs ici :  http://www.cof.ens.fr/depot/Rentree.pdf \r\n\r\nAmicalement,\r\n\r\nTon COF qui t'aime.",
+        "description": "Mail de bienvenue au COF envoy\u00e9 automatiquement \u00e0 l'inscription d'un nouveau membre"
+    },
+    "pk": 1
 },
 {
     "model": "custommail.custommail",
-    "pk": 2,
     "fields": {
         "shortname": "bda-rappel",
         "subject": "{{ show }}",
-        "description": "Mail de rappel pour les spectacles BdA",
-        "body": "Bonjour {{ member.first_name }},\r\n\r\nNous te rappellons que tu as eu la chance d'obtenir {{ nb_attr|pluralize:\"une place,deux places\" }}\r\npour {{ show.title }}, le {{ show.date }} au {{ show.location }}. N'oublie pas de t'y rendre !\r\n{% if nb_attr == 2 %}\r\nTu as obtenu deux places pour ce spectacle. Nous te rappelons que\r\nces places sont strictement r\u00e9serv\u00e9es aux personnes de moins de 28 ans.\r\n{% endif %}\r\n{% if show.listing %}Pour ce spectacle, tu as re\u00e7u des places sur\r\nlisting. Il te faudra donc te rendre 15 minutes en avance sur les lieux de la repr\u00e9sentation\r\npour retirer {{ nb_attr|pluralize:\"ta place,tes places\" }}.\r\n{% else %}Pour assister \u00e0 ce spectacle, tu dois pr\u00e9senter les billets qui ont\r\n\u00e9t\u00e9 distribu\u00e9s au bur\u00f4.\r\n{% endif %}\r\n\r\nSi tu ne peux plus assister \u00e0 cette repr\u00e9sentation, tu peux\r\nrevendre ta place via BdA-revente, accessible directement sur\r\nGestioCOF (lien \"revendre une place du premier tirage\" sur la page\r\nd'accueil https://www.cof.ens.fr/gestion/).\r\n\r\nEn te souhaitant un excellent spectacle,\r\n\r\nLe Bureau des Arts"
-    }
+        "body": "Bonjour {{ member.first_name }},\r\n\r\nNous te rappellons que tu as eu la chance d'obtenir {{ nb_attr|pluralize:\"une place,deux places\" }}\r\npour {{ show.title }}, le {{ show.date }} au {{ show.location }}. N'oublie pas de t'y rendre !\r\n{% if nb_attr == 2 %}\r\nTu as obtenu deux places pour ce spectacle. Nous te rappelons que\r\nces places sont strictement r\u00e9serv\u00e9es aux personnes de moins de 28 ans.\r\n{% endif %}\r\n{% if show.listing %}Pour ce spectacle, tu as re\u00e7u des places sur\r\nlisting. Il te faudra donc te rendre 15 minutes en avance sur les lieux de la repr\u00e9sentation\r\npour retirer {{ nb_attr|pluralize:\"ta place,tes places\" }}.\r\n{% else %}Pour assister \u00e0 ce spectacle, tu dois pr\u00e9senter les billets qui ont\r\n\u00e9t\u00e9 distribu\u00e9s au bur\u00f4.\r\n{% endif %}\r\n\r\nSi tu ne peux plus assister \u00e0 cette repr\u00e9sentation, tu peux\r\nrevendre ta place via BdA-revente, accessible directement sur\r\nGestioCOF (lien \"revendre une place du premier tirage\" sur la page\r\nd'accueil https://www.cof.ens.fr/gestion/).\r\n\r\nEn te souhaitant un excellent spectacle,\r\n\r\nLe Bureau des Arts",
+        "description": "Mail de rappel pour les spectacles BdA"
+    },
+    "pk": 2
 },
 {
     "model": "custommail.custommail",
-    "pk": 3,
     "fields": {
         "shortname": "bda-revente",
         "subject": "{{ show }}",
-        "description": "Notification envoy\u00e9e \u00e0 toutes les personnes int\u00e9ress\u00e9es par un spectacle pour le signaler qu'une place vient d'\u00eatre mise en vente.",
-        "body": "Bonjour {{ member.first_name }}\r\n\r\nUne place pour le spectacle {{ show.title }} ({{ show.date }})\r\na \u00e9t\u00e9 post\u00e9e sur BdA-Revente.\r\n\r\nSi ce spectacle t'int\u00e9resse toujours, merci de nous le signaler en cliquant\r\nsur ce lien : http://{{ site }}{% url \"bda-revente-interested\" revente.id %}.\r\nDans le cas o\u00f9 plusieurs personnes seraient int\u00e9ress\u00e9es, nous proc\u00e8derons \u00e0\r\nun tirage au sort le {{ revente.date_tirage|date:\"DATE_FORMAT\" }}.\r\n\r\nChaleureusement,\r\nLe BdA"
-    }
+        "body": "Bonjour {{ member.first_name }}\r\n\r\nUne place pour le spectacle {{ show.title }} ({{ show.date }})\r\na \u00e9t\u00e9 post\u00e9e sur BdA-Revente.\r\n\r\nSi ce spectacle t'int\u00e9resse toujours, merci de nous le signaler en cliquant\r\nsur ce lien : http://{{ site }}{% url \"bda-revente-interested\" revente.id %}.\r\nDans le cas o\u00f9 plusieurs personnes seraient int\u00e9ress\u00e9es, nous proc\u00e8derons \u00e0\r\nun tirage au sort le {{ revente.date_tirage|date:\"DATE_FORMAT\" }}.\r\n\r\nChaleureusement,\r\nLe BdA",
+        "description": "Notification envoy\u00e9e \u00e0 toutes les personnes int\u00e9ress\u00e9es par un spectacle pour le signaler qu'une place vient d'\u00eatre mise en vente."
+    },
+    "pk": 3
 },
 {
     "model": "custommail.custommail",
-    "pk": 4,
     "fields": {
         "shortname": "bda-shotgun",
         "subject": "{{ show }}",
-        "description": "Notification signalant qu'une place est au shotgun aux personnes int\u00e9ress\u00e9es.",
-        "body": "Bonjour {{ member.first_name }}\r\n\r\nUne place pour le spectacle {{ show.title }} ({{ show.date }})\r\na \u00e9t\u00e9 post\u00e9e sur BdA-Revente.\r\n\r\nPuisque ce spectacle a lieu dans moins de 24h, il n'y a pas de tirage au sort pour\r\ncette place : elle est disponible imm\u00e9diatement \u00e0 l'adresse\r\nhttp://{{ site }}{% url \"bda-buy-revente\" show.id %}, \u00e0 la disposition de tous.\r\n\r\nChaleureusement,\r\nLe BdA"
-    }
+        "body": "Bonjour {{ member.first_name }}\r\n\r\nUne place pour le spectacle {{ show.title }} ({{ show.date }})\r\na \u00e9t\u00e9 post\u00e9e sur BdA-Revente.\r\n\r\nPuisque ce spectacle a lieu dans moins de 24h, il n'y a pas de tirage au sort pour\r\ncette place : elle est disponible imm\u00e9diatement \u00e0 l'adresse\r\nhttp://{{ site }}{% url \"bda-buy-revente\" show.id %}, \u00e0 la disposition de tous.\r\n\r\nChaleureusement,\r\nLe BdA",
+        "description": "Notification signalant qu'une place est au shotgun aux personnes int\u00e9ress\u00e9es."
+    },
+    "pk": 4
 },
 {
     "model": "custommail.custommail",
-    "pk": 5,
     "fields": {
         "shortname": "bda-revente-winner",
         "subject": "BdA-Revente : {{ show.title }}",
-        "description": "Mail envoy\u00e9 au gagnant d'un tirage BdA-Revente",
-        "body": "Bonjour {{ acheteur.first_name }},\r\n\r\nTu as \u00e9t\u00e9 tir\u00e9-e au sort pour racheter une place pour {{ show.title }} le {{ show.date }} ({{ show.location }}) \u00e0 {{ show.price|floatformat:2 }}\u20ac.\r\nTu peux contacter le/la vendeur-se \u00e0 l'adresse {{ vendeur.email }}.\r\n\r\nChaleureusement,\r\nLe BdA"
-    }
+        "body": "Bonjour {{ acheteur.first_name }},\r\n\r\nTu as \u00e9t\u00e9 tir\u00e9-e au sort pour racheter une place pour {{ show.title }} le {{ show.date }} ({{ show.location }}) \u00e0 {{ show.price|floatformat:2 }}\u20ac.\r\nTu peux contacter le/la vendeur-se \u00e0 l'adresse {{ vendeur.email }}.\r\n\r\nChaleureusement,\r\nLe BdA",
+        "description": "Mail envoy\u00e9 au gagnant d'un tirage BdA-Revente"
+    },
+    "pk": 5
 },
 {
     "model": "custommail.custommail",
-    "pk": 6,
     "fields": {
         "shortname": "bda-revente-loser",
         "subject": "BdA-Revente : {{ show.title }}",
-        "description": "Notification envoy\u00e9e aux perdants d'un tirage de revente.",
-        "body": "Bonjour {{ acheteur.first_name }},\r\n\r\nTu t'\u00e9tais inscrit-e pour la revente de la place de {{ vendeur.get_full_name }}\r\npour {{ show.title }}.\r\nMalheureusement, une autre personne a \u00e9t\u00e9 tir\u00e9e au sort pour racheter la place.\r\nTu pourras certainement retenter ta chance pour une autre revente !\r\n\r\n\u00c0 tr\u00e8s bient\u00f4t,\r\nLe Bureau des Arts"
-    }
+        "body": "Bonjour {{ acheteur.first_name }},\r\n\r\nTu t'\u00e9tais inscrit-e pour la revente de la place de {{ vendeur.get_full_name }}\r\npour {{ show.title }}.\r\nMalheureusement, une autre personne a \u00e9t\u00e9 tir\u00e9e au sort pour racheter la place.\r\nTu pourras certainement retenter ta chance pour une autre revente !\r\n\r\n\u00c0 tr\u00e8s bient\u00f4t,\r\nLe Bureau des Arts",
+        "description": "Notification envoy\u00e9e aux perdants d'un tirage de revente."
+    },
+    "pk": 6
 },
 {
     "model": "custommail.custommail",
-    "pk": 7,
     "fields": {
         "shortname": "bda-revente-seller",
         "subject": "BdA-Revente : {{ show.title }}",
-        "description": "Notification envoy\u00e9e au vendeur d'une place pour lui indiquer qu'elle vient d'\u00eatre attribu\u00e9e",
-        "body": "Bonjour {{ vendeur.first_name }},\r\n\r\nLa personne tir\u00e9e au sort pour racheter ta place pour {{ show.title }} est {{ acheteur.get_full_name }}.\r\nTu peux le/la contacter \u00e0 l'adresse {{ acheteur.email }}, ou en r\u00e9pondant \u00e0 ce mail.\r\n\r\nChaleureusement,\r\nLe BdA"
-    }
+        "body": "Bonjour {{ vendeur.first_name }},\r\n\r\nLa personne tir\u00e9e au sort pour racheter ta place pour {{ show.title }} est {{ acheteur.get_full_name }}.\r\nTu peux le/la contacter \u00e0 l'adresse {{ acheteur.email }}, ou en r\u00e9pondant \u00e0 ce mail.\r\n\r\nChaleureusement,\r\nLe BdA",
+        "description": "Notification envoy\u00e9e au vendeur d'une place pour lui indiquer qu'elle vient d'\u00eatre attribu\u00e9e"
+    },
+    "pk": 7
 },
 {
     "model": "custommail.custommail",
-    "pk": 8,
     "fields": {
         "shortname": "bda-revente-new",
         "subject": "BdA-Revente : {{ show.title }}",
-        "description": "Notification signalant au vendeur d'une place que sa mise en vente a bien eu lieu et lui donnant quelques informations compl\u00e9mentaires.",
-        "body": "Bonjour {{ vendeur.first_name }},\r\n\r\nTu t\u2019es bien inscrit-e pour la revente de {{ show.title }}.\r\n\r\n{% with revente.date_tirage as time %}\r\nLe tirage au sort entre tout-e-s les racheteuse-eur-s potentiel-le-s aura lieu\r\nle {{ time|date:\"DATE_FORMAT\" }} \u00e0 {{ time|time:\"TIME_FORMAT\" }} (dans {{time|timeuntil }}).\r\nSi personne ne s\u2019est inscrit pour racheter la place, celle-ci apparaitra parmi\r\nles \u00ab Places disponibles imm\u00e9diatement \u00e0 la revente \u00bb sur GestioCOF.\r\n{% endwith %}\r\n\r\nBonne revente !\r\nLe Bureau des Arts"
-    }
+        "body": "Bonjour {{ vendeur.first_name }},\r\n\r\nTu t\u2019es bien inscrit-e pour la revente de {{ show.title }}.\r\n\r\n{% with revente.date_tirage as time %}\r\nLe tirage au sort entre tout-e-s les racheteuse-eur-s potentiel-le-s aura lieu\r\nle {{ time|date:\"DATE_FORMAT\" }} \u00e0 {{ time|time:\"TIME_FORMAT\" }} (dans {{time|timeuntil }}).\r\nSi personne ne s\u2019est inscrit pour racheter la place, celle-ci apparaitra parmi\r\nles \u00ab Places disponibles imm\u00e9diatement \u00e0 la revente \u00bb sur GestioCOF.\r\n{% endwith %}\r\n\r\nBonne revente !\r\nLe Bureau des Arts",
+        "description": "Notification signalant au vendeur d'une place que sa mise en vente a bien eu lieu et lui donnant quelques informations compl\u00e9mentaires."
+    },
+    "pk": 8
 },
 {
     "model": "custommail.custommail",
-    "pk": 9,
     "fields": {
         "shortname": "bda-buy-shotgun",
         "subject": "BdA-Revente : {{ show.title }}",
-        "description": "Mail envoy\u00e9 au revendeur lors d'un achat au shotgun.",
-        "body": "Bonjour {{ vendeur.first_name }} !\r\n\r\nJe souhaiterais racheter ta place pour {{ show.title }} le {{ show.date }} ({{ show.location }}) \u00e0 {{ show.price|floatformat:2 }}\u20ac.\r\nContacte-moi si tu es toujours int\u00e9ress\u00e9\u00b7e !\r\n\r\n{{ acheteur.get_full_name }} ({{ acheteur.email }})"
-    }
+        "body": "Bonjour {{ vendeur.first_name }} !\r\n\r\nJe souhaiterais racheter ta place pour {{ show.title }} le {{ show.date }} ({{ show.location }}) \u00e0 {{ show.price|floatformat:2 }}\u20ac.\r\nContacte-moi si tu es toujours int\u00e9ress\u00e9\u00b7e !\r\n\r\n{{ acheteur.get_full_name }} ({{ acheteur.email }})",
+        "description": "Mail envoy\u00e9 au revendeur lors d'un achat au shotgun."
+    },
+    "pk": 9
 },
 {
     "model": "custommail.custommail",
-    "pk": 10,
     "fields": {
         "shortname": "petit-cours-mail-eleve",
         "subject": "Petits cours ENS par le COF",
-        "description": "Mail envoy\u00e9 aux personnes dont ont a donn\u00e9 les contacts \u00e0 des demandeurs de petits cours",
-        "body": "Salut,\r\n\r\nLe COF a re\u00e7u une demande de petit cours qui te correspond. Tu es en haut de la liste d'attente donc on a transmis tes coordonn\u00e9es, ainsi que celles de 2 autres qui correspondaient aussi (c'est la vie, on donne les num\u00e9ros 3 par 3 pour que ce soit plus souple). Voici quelques infos sur l'annonce en question :\r\n\r\n\u00a4 Nom : {{ demande.name }}\r\n\r\n\u00a4 P\u00e9riode : {{ demande.quand }}\r\n\r\n\u00a4 Fr\u00e9quence : {{ demande.freq }}\r\n\r\n\u00a4 Lieu (si pr\u00e9f\u00e9r\u00e9) : {{ demande.lieu }}\r\n\r\n\u00a4 Niveau : {{ demande.get_niveau_display }}\r\n\r\n\u00a4 Remarques diverses (d\u00e9sol\u00e9 pour les balises HTML) : {{ demande.remarques }}\r\n\r\n{% if matieres|length > 1 %}\u00a4 Mati\u00e8res :\r\n{% for matiere in matieres %}        \u00a4 {{ matiere }}\r\n{% endfor %}{% else %}\u00a4 Mati\u00e8re : {% for matiere in matieres %}{{ matiere }}\r\n{% endfor %}{% endif %}\r\nVoil\u00e0, cette personne te contactera peut-\u00eatre sous peu, tu pourras voir les d\u00e9tails directement avec elle (prix, modalit\u00e9s, ...). Pour indication, 30 Euro/h semble \u00eatre la moyenne.\r\n\r\nSi tu te rends compte qu'en fait tu ne peux pas/plus donner de cours en ce moment, \u00e7a serait cool que tu d\u00e9coches la case \"Recevoir des propositions de petits cours\" sur GestioCOF. Ensuite d\u00e8s que tu voudras r\u00e9appara\u00eetre tu pourras recocher la case et tu seras \u00e0 nouveau sur la liste.\r\n\r\n\u00c0 bient\u00f4t,\r\n\r\n--\r\nLe COF, pour les petits cours"
-    }
+        "body": "Salut,\r\n\r\nLe COF a re\u00e7u une demande de petit cours qui te correspond. Tu es en haut de la liste d'attente donc on a transmis tes coordonn\u00e9es, ainsi que celles de 2 autres qui correspondaient aussi (c'est la vie, on donne les num\u00e9ros 3 par 3 pour que ce soit plus souple). Voici quelques infos sur l'annonce en question :\r\n\r\n\u00a4 Nom : {{ demande.name }}\r\n\r\n\u00a4 P\u00e9riode : {{ demande.quand }}\r\n\r\n\u00a4 Fr\u00e9quence : {{ demande.freq }}\r\n\r\n\u00a4 Lieu (si pr\u00e9f\u00e9r\u00e9) : {{ demande.lieu }}\r\n\r\n\u00a4 Niveau : {{ demande.get_niveau_display }}\r\n\r\n\u00a4 Remarques diverses (d\u00e9sol\u00e9 pour les balises HTML) : {{ demande.remarques }}\r\n\r\n{% if matieres|length > 1 %}\u00a4 Mati\u00e8res :\r\n{% for matiere in matieres %}        \u00a4 {{ matiere }}\r\n{% endfor %}{% else %}\u00a4 Mati\u00e8re : {% for matiere in matieres %}{{ matiere }}\r\n{% endfor %}{% endif %}\r\nVoil\u00e0, cette personne te contactera peut-\u00eatre sous peu, tu pourras voir les d\u00e9tails directement avec elle (prix, modalit\u00e9s, ...). Pour indication, 30 Euro/h semble \u00eatre la moyenne.\r\n\r\nSi tu te rends compte qu'en fait tu ne peux pas/plus donner de cours en ce moment, \u00e7a serait cool que tu d\u00e9coches la case \"Recevoir des propositions de petits cours\" sur GestioCOF. Ensuite d\u00e8s que tu voudras r\u00e9appara\u00eetre tu pourras recocher la case et tu seras \u00e0 nouveau sur la liste.\r\n\r\n\u00c0 bient\u00f4t,\r\n\r\n--\r\nLe COF, pour les petits cours",
+        "description": "Mail envoy\u00e9 aux personnes dont ont a donn\u00e9 les contacts \u00e0 des demandeurs de petits cours"
+    },
+    "pk": 10
 },
 {
     "model": "custommail.custommail",
-    "pk": 11,
     "fields": {
         "shortname": "petits-cours-mail-demandeur",
         "subject": "Cours particuliers ENS",
-        "description": "Mail envoy\u00e9 aux personnent qui demandent des petits cours lorsque leur demande est trait\u00e9e.\r\n\r\n(Ne pas toucher \u00e0  {{ extra|safe }})",
-        "body": "Bonjour,\r\n\r\nJe vous contacte au sujet de votre annonce pass\u00e9e sur le site du COF pour rentrer en contact avec un \u00e9l\u00e8ve normalien pour des cours particuliers. Voici les coordonn\u00e9es d'\u00e9l\u00e8ves qui sont motiv\u00e9s par de tels cours et correspondent aux crit\u00e8res que vous nous aviez transmis :\r\n\r\n{% for matiere, proposed in proposals %}\u00a4 {{ matiere }} :{% for user in proposed %}\r\n        \u00a4 {{ user.get_full_name }}{% if user.profile.phone %}, {{ user.profile.phone }}{% endif %}{% if user.email %}, {{ user.email }}{% endif %}{% endfor %}\r\n\r\n{% endfor %}{% if unsatisfied %}Nous n'avons cependant pas pu trouver d'\u00e9l\u00e8ve disponible pour des cours de {% for matiere in unsatisfied %}{% if forloop.counter0 > 0 %}, {% endif %}{{ matiere }}{% endfor %}.\r\n\r\n{% endif %}Si pour une raison ou une autre ces num\u00e9ros ne suffisaient pas, n'h\u00e9sitez pas \u00e0 r\u00e9pondre \u00e0 cet e-mail et je vous en ferai parvenir d'autres sans probl\u00e8me.\r\n{% if extra|length > 0 %}\r\n{{ extra|safe }}\r\n{% endif %}\r\nCordialement,\r\n\r\n--\r\nLe COF, BdE de l'ENS"
-    }
+        "body": "Bonjour,\r\n\r\nJe vous contacte au sujet de votre annonce pass\u00e9e sur le site du COF pour rentrer en contact avec un \u00e9l\u00e8ve normalien pour des cours particuliers. Voici les coordonn\u00e9es d'\u00e9l\u00e8ves qui sont motiv\u00e9s par de tels cours et correspondent aux crit\u00e8res que vous nous aviez transmis :\r\n\r\n{% for matiere, proposed in proposals %}\u00a4 {{ matiere }} :{% for user in proposed %}\r\n        \u00a4 {{ user.get_full_name }}{% if user.profile.phone %}, {{ user.profile.phone }}{% endif %}{% if user.email %}, {{ user.email }}{% endif %}{% endfor %}\r\n\r\n{% endfor %}{% if unsatisfied %}Nous n'avons cependant pas pu trouver d'\u00e9l\u00e8ve disponible pour des cours de {% for matiere in unsatisfied %}{% if forloop.counter0 > 0 %}, {% endif %}{{ matiere }}{% endfor %}.\r\n\r\n{% endif %}Si pour une raison ou une autre ces num\u00e9ros ne suffisaient pas, n'h\u00e9sitez pas \u00e0 r\u00e9pondre \u00e0 cet e-mail et je vous en ferai parvenir d'autres sans probl\u00e8me.\r\n{% if extra|length > 0 %}\r\n{{ extra|safe }}\r\n{% endif %}\r\nCordialement,\r\n\r\n--\r\nLe COF, BdE de l'ENS",
+        "description": "Mail envoy\u00e9 aux personnes qui demandent des petits cours lorsque leur demande est trait\u00e9e.\r\n\r\n(Ne pas toucher \u00e0  {{ extra|safe }})"
+    },
+    "pk": 11
 },
 {
     "model": "custommail.custommail",
-    "pk": 12,
     "fields": {
         "shortname": "bda-attributions",
         "subject": "R\u00e9sultats du tirage au sort",
-        "description": "Mail annon\u00e7ant les r\u00e9sultats du tirage au sort du BdA aux gagnants d'une ou plusieurs places",
-        "body": "Cher-e {{ member.first_name }},\r\n\r\nTu t'es inscrit-e pour le tirage au sort du BdA. Tu as \u00e9t\u00e9 s\u00e9lectionn\u00e9-e\r\npour les spectacles suivants :\r\n{% for place in places %}\r\n- 1 place pour {{ place }}{% endfor %}\r\n\r\n*Paiement*\r\nL'int\u00e9gralit\u00e9 de ces places de spectacles est \u00e0 r\u00e9gler d\u00e8s maintenant et AVANT\r\nvendredi prochain, au bureau du COF pendant les heures de permanences (du lundi au vendredi\r\nentre 12h et 14h, et entre 18h et 20h). Des facilit\u00e9s de paiement sont bien\r\n\u00e9videmment possibles : nous pouvons ne pas encaisser le ch\u00e8que imm\u00e9diatement,\r\nou bien d\u00e9couper votre paiement en deux fois. Pour ceux qui ne pourraient pas\r\nvenir payer au bureau, merci de nous contacter par mail.\r\n\r\n*Mode de retrait des places*\r\nAu moment du paiement, certaines places vous seront remises directement,\r\nd'autres seront \u00e0 r\u00e9cup\u00e9rer au cours de l'ann\u00e9e, d'autres encore seront\r\nnominatives et \u00e0 retirer le soir m\u00eame dans les the\u00e2tres correspondants.\r\nPour chaque spectacle, vous recevrez un mail quelques jours avant la\r\nrepr\u00e9sentation vous indiquant le mode de retrait.\r\n\r\nNous vous rappelons que l'obtention de places du BdA vous engage \u00e0\r\nrespecter les r\u00e8gles de fonctionnement :\r\nhttp://www.cof.ens.fr/bda/?page_id=1370\r\nUn syst\u00e8me de revente des places via les mails BdA-revente disponible\r\ndirectement sur votre compte GestioCOF.\r\n\r\nEn vous souhaitant de tr\u00e8s beaux spectacles tout au long de l'ann\u00e9e,\r\n--\r\nLe Bureau des Arts"
-    }
+        "body": "Cher-e {{ member.first_name }},\r\n\r\nTu t'es inscrit-e pour le tirage au sort du BdA. Tu as \u00e9t\u00e9 s\u00e9lectionn\u00e9-e\r\npour les spectacles suivants :\r\n{% for place in places %}\r\n- 1 place pour {{ place }}{% endfor %}\r\n\r\n*Paiement*\r\nL'int\u00e9gralit\u00e9 de ces places de spectacles est \u00e0 r\u00e9gler d\u00e8s maintenant et AVANT\r\nvendredi prochain, au bureau du COF pendant les heures de permanences (du lundi au vendredi\r\nentre 12h et 14h, et entre 18h et 20h). Des facilit\u00e9s de paiement sont bien\r\n\u00e9videmment possibles : nous pouvons ne pas encaisser le ch\u00e8que imm\u00e9diatement,\r\nou bien d\u00e9couper votre paiement en deux fois. Pour ceux qui ne pourraient pas\r\nvenir payer au bureau, merci de nous contacter par mail.\r\n\r\n*Mode de retrait des places*\r\nAu moment du paiement, certaines places vous seront remises directement,\r\nd'autres seront \u00e0 r\u00e9cup\u00e9rer au cours de l'ann\u00e9e, d'autres encore seront\r\nnominatives et \u00e0 retirer le soir m\u00eame dans les the\u00e2tres correspondants.\r\nPour chaque spectacle, vous recevrez un mail quelques jours avant la\r\nrepr\u00e9sentation vous indiquant le mode de retrait.\r\n\r\nNous vous rappelons que l'obtention de places du BdA vous engage \u00e0\r\nrespecter les r\u00e8gles de fonctionnement :\r\nhttp://www.cof.ens.fr/bda/?page_id=1370\r\nUn syst\u00e8me de revente des places via les mails BdA-revente disponible\r\ndirectement sur votre compte GestioCOF.\r\n\r\nEn vous souhaitant de tr\u00e8s beaux spectacles tout au long de l'ann\u00e9e,\r\n--\r\nLe Bureau des Arts",
+        "description": "Mail annon\u00e7ant les r\u00e9sultats du tirage au sort du BdA aux gagnants d'une ou plusieurs places"
+    },
+    "pk": 12
 },
 {
     "model": "custommail.custommail",
-    "pk": 13,
     "fields": {
         "shortname": "bda-attributions-decus",
         "subject": "R\u00e9sultats du tirage au sort",
-        "description": "Mail annon\u00e7ant les r\u00e9sultats du tirage au sort du BdA aux personnes n'ayant pas obtenu de place",
-        "body": "Cher-e {{ member.first_name }},\r\n\r\nTu t'es inscrit-e pour le tirage au sort du BdA. Malheureusement, tu n'as\r\nobtenu aucune place.\r\n\r\nNous proposons cependant de nombreuses offres hors-tirage tout au long de\r\nl'ann\u00e9e, et nous t'invitons \u00e0 nous contacter si l'une d'entre elles\r\nt'int\u00e9resse !\r\n--\r\nLe Bureau des Arts"
-    }
+        "body": "Cher-e {{ member.first_name }},\r\n\r\nTu t'es inscrit-e pour le tirage au sort du BdA. Malheureusement, tu n'as\r\nobtenu aucune place.\r\n\r\nNous proposons cependant de nombreuses offres hors-tirage tout au long de\r\nl'ann\u00e9e, et nous t'invitons \u00e0 nous contacter si l'une d'entre elles\r\nt'int\u00e9resse !\r\n--\r\nLe Bureau des Arts",
+        "description": "Mail annon\u00e7ant les r\u00e9sultats du tirage au sort du BdA aux personnes n'ayant pas obtenu de place"
+    },
+    "pk": 13
 },
 {
-    "model": "custommail.custommailvariable",
-    "pk": 1,
+    "model": "custommail.variable",
     "fields": {
-        "name": "member",
-        "description": "Utilisateur de GestioCOF",
         "custommail": 1,
-        "type": 1
-    }
-},
-{
-    "model": "custommail.custommailvariable",
-    "pk": 2,
-    "fields": {
+        "type": 1,
         "name": "member",
-        "description": "Utilisateur ayant eu une place pour ce spectacle",
-        "custommail": 2,
-        "type": 1
-    }
+        "description": "Utilisateur de GestioCOF"
+    },
+    "pk": 1
 },
 {
-    "model": "custommail.custommailvariable",
-    "pk": 3,
+    "model": "custommail.variable",
     "fields": {
+        "custommail": 2,
+        "type": 1,
+        "name": "member",
+        "description": "Utilisateur ayant eu une place pour ce spectacle"
+    },
+    "pk": 2
+},
+{
+    "model": "custommail.variable",
+    "fields": {
+        "custommail": 2,
+        "type": 3,
         "name": "show",
-        "description": "Spectacle",
-        "custommail": 2,
-        "type": 3
-    }
+        "description": "Spectacle"
+    },
+    "pk": 3
 },
 {
-    "model": "custommail.custommailvariable",
-    "pk": 4,
+    "model": "custommail.variable",
     "fields": {
+        "custommail": 2,
+        "type": 2,
         "name": "nb_attr",
-        "description": "Nombre de places obtenues",
-        "custommail": 2,
-        "type": 2
-    }
+        "description": "Nombre de places obtenues"
+    },
+    "pk": 4
 },
 {
-    "model": "custommail.custommailvariable",
-    "pk": 5,
+    "model": "custommail.variable",
     "fields": {
+        "custommail": 3,
+        "type": 4,
         "name": "revente",
-        "description": "Revente mentionn\u00e9e dans le mail",
-        "custommail": 3,
-        "type": 4
-    }
+        "description": "Revente mentionn\u00e9e dans le mail"
+    },
+    "pk": 5
 },
 {
-    "model": "custommail.custommailvariable",
-    "pk": 6,
+    "model": "custommail.variable",
     "fields": {
+        "custommail": 3,
+        "type": 1,
         "name": "member",
-        "description": "Personne int\u00e9ress\u00e9e par la place",
-        "custommail": 3,
-        "type": 1
-    }
+        "description": "Personne int\u00e9ress\u00e9e par la place"
+    },
+    "pk": 6
 },
 {
-    "model": "custommail.custommailvariable",
-    "pk": 7,
+    "model": "custommail.variable",
     "fields": {
+        "custommail": 3,
+        "type": 3,
         "name": "show",
-        "description": "Spectacle",
-        "custommail": 3,
-        "type": 3
-    }
+        "description": "Spectacle"
+    },
+    "pk": 7
 },
 {
-    "model": "custommail.custommailvariable",
-    "pk": 8,
+    "model": "custommail.variable",
     "fields": {
-        "name": "site",
-        "description": "Site web (gestioCOF)",
         "custommail": 3,
-        "type": 5
-    }
+        "type": 5,
+        "name": "site",
+        "description": "Site web (gestioCOF)"
+    },
+    "pk": 8
 },
 {
-    "model": "custommail.custommailvariable",
-    "pk": 9,
+    "model": "custommail.variable",
     "fields": {
-        "name": "site",
-        "description": "Site web (gestioCOF)",
         "custommail": 4,
-        "type": 5
-    }
+        "type": 5,
+        "name": "site",
+        "description": "Site web (gestioCOF)"
+    },
+    "pk": 9
 },
 {
-    "model": "custommail.custommailvariable",
-    "pk": 10,
+    "model": "custommail.variable",
     "fields": {
+        "custommail": 4,
+        "type": 3,
         "name": "show",
-        "description": "Spectacle",
-        "custommail": 4,
-        "type": 3
-    }
+        "description": "Spectacle"
+    },
+    "pk": 10
 },
 {
-    "model": "custommail.custommailvariable",
-    "pk": 11,
+    "model": "custommail.variable",
     "fields": {
+        "custommail": 4,
+        "type": 1,
         "name": "member",
-        "description": "Personne int\u00e9ress\u00e9e par la place",
-        "custommail": 4,
-        "type": 1
-    }
+        "description": "Personne int\u00e9ress\u00e9e par la place"
+    },
+    "pk": 11
 },
 {
-    "model": "custommail.custommailvariable",
-    "pk": 12,
+    "model": "custommail.variable",
     "fields": {
-        "name": "acheteur",
-        "description": "Gagnant-e du tirage",
         "custommail": 5,
-        "type": 1
-    }
-},
-{
-    "model": "custommail.custommailvariable",
-    "pk": 13,
-    "fields": {
-        "name": "vendeur",
-        "description": "Personne qui vend une place",
-        "custommail": 5,
-        "type": 1
-    }
-},
-{
-    "model": "custommail.custommailvariable",
-    "pk": 14,
-    "fields": {
-        "name": "show",
-        "description": "Spectacle",
-        "custommail": 5,
-        "type": 3
-    }
-},
-{
-    "model": "custommail.custommailvariable",
-    "pk": 15,
-    "fields": {
-        "name": "show",
-        "description": "Spectacle",
-        "custommail": 6,
-        "type": 3
-    }
-},
-{
-    "model": "custommail.custommailvariable",
-    "pk": 16,
-    "fields": {
-        "name": "vendeur",
-        "description": "Personne qui vend une place",
-        "custommail": 6,
-        "type": 1
-    }
-},
-{
-    "model": "custommail.custommailvariable",
-    "pk": 17,
-    "fields": {
+        "type": 1,
         "name": "acheteur",
-        "description": "Personne inscrite au tirage qui n'a pas eu la place",
-        "custommail": 6,
-        "type": 1
-    }
+        "description": "Gagnant-e du tirage"
+    },
+    "pk": 12
 },
 {
-    "model": "custommail.custommailvariable",
-    "pk": 18,
-    "fields": {
-        "name": "acheteur",
-        "description": "Gagnant-e du tirage",
-        "custommail": 7,
-        "type": 1
-    }
-},
-{
-    "model": "custommail.custommailvariable",
-    "pk": 19,
+    "model": "custommail.variable",
     "fields": {
+        "custommail": 5,
+        "type": 1,
         "name": "vendeur",
-        "description": "Personne qui vend une place",
-        "custommail": 7,
-        "type": 1
-    }
+        "description": "Personne qui vend une place"
+    },
+    "pk": 13
 },
 {
-    "model": "custommail.custommailvariable",
-    "pk": 20,
+    "model": "custommail.variable",
     "fields": {
+        "custommail": 5,
+        "type": 3,
         "name": "show",
-        "description": "Spectacle",
-        "custommail": 7,
-        "type": 3
-    }
+        "description": "Spectacle"
+    },
+    "pk": 14
 },
 {
-    "model": "custommail.custommailvariable",
-    "pk": 21,
+    "model": "custommail.variable",
     "fields": {
+        "custommail": 6,
+        "type": 3,
         "name": "show",
-        "description": "Spectacle",
+        "description": "Spectacle"
+    },
+    "pk": 15
+},
+{
+    "model": "custommail.variable",
+    "fields": {
+        "custommail": 6,
+        "type": 1,
+        "name": "vendeur",
+        "description": "Personne qui vend une place"
+    },
+    "pk": 16
+},
+{
+    "model": "custommail.variable",
+    "fields": {
+        "custommail": 6,
+        "type": 1,
+        "name": "acheteur",
+        "description": "Personne inscrite au tirage qui n'a pas eu la place"
+    },
+    "pk": 17
+},
+{
+    "model": "custommail.variable",
+    "fields": {
+        "custommail": 7,
+        "type": 1,
+        "name": "acheteur",
+        "description": "Gagnant-e du tirage"
+    },
+    "pk": 18
+},
+{
+    "model": "custommail.variable",
+    "fields": {
+        "custommail": 7,
+        "type": 1,
+        "name": "vendeur",
+        "description": "Personne qui vend une place"
+    },
+    "pk": 19
+},
+{
+    "model": "custommail.variable",
+    "fields": {
+        "custommail": 7,
+        "type": 3,
+        "name": "show",
+        "description": "Spectacle"
+    },
+    "pk": 20
+},
+{
+    "model": "custommail.variable",
+    "fields": {
         "custommail": 8,
-        "type": 3
-    }
+        "type": 3,
+        "name": "show",
+        "description": "Spectacle"
+    },
+    "pk": 21
 },
 {
-    "model": "custommail.custommailvariable",
-    "pk": 22,
+    "model": "custommail.variable",
     "fields": {
-        "name": "vendeur",
-        "description": "Personne qui vend la place",
         "custommail": 8,
-        "type": 1
-    }
+        "type": 1,
+        "name": "vendeur",
+        "description": "Personne qui vend la place"
+    },
+    "pk": 22
 },
 {
-    "model": "custommail.custommailvariable",
-    "pk": 23,
+    "model": "custommail.variable",
     "fields": {
+        "custommail": 8,
+        "type": 4,
         "name": "revente",
-        "description": "Revente mentionn\u00e9e dans le mail",
-        "custommail": 8,
-        "type": 4
-    }
+        "description": "Revente mentionn\u00e9e dans le mail"
+    },
+    "pk": 23
 },
 {
-    "model": "custommail.custommailvariable",
-    "pk": 24,
+    "model": "custommail.variable",
     "fields": {
+        "custommail": 9,
+        "type": 1,
         "name": "vendeur",
-        "description": "Personne qui vend la place",
-        "custommail": 9,
-        "type": 1
-    }
+        "description": "Personne qui vend la place"
+    },
+    "pk": 24
 },
 {
-    "model": "custommail.custommailvariable",
-    "pk": 25,
+    "model": "custommail.variable",
     "fields": {
+        "custommail": 9,
+        "type": 3,
         "name": "show",
-        "description": "Spectacle",
-        "custommail": 9,
-        "type": 3
-    }
+        "description": "Spectacle"
+    },
+    "pk": 25
 },
 {
-    "model": "custommail.custommailvariable",
-    "pk": 26,
+    "model": "custommail.variable",
     "fields": {
+        "custommail": 9,
+        "type": 1,
         "name": "acheteur",
-        "description": "Personne qui prend la place au shotgun",
-        "custommail": 9,
-        "type": 1
-    }
+        "description": "Personne qui prend la place au shotgun"
+    },
+    "pk": 26
 },
 {
-    "model": "custommail.custommailvariable",
-    "pk": 27,
+    "model": "custommail.variable",
     "fields": {
+        "custommail": 10,
+        "type": 6,
         "name": "demande",
-        "description": "Demande de petit cours",
-        "custommail": 10,
-        "type": 6
-    }
+        "description": "Demande de petit cours"
+    },
+    "pk": 27
 },
 {
-    "model": "custommail.custommailvariable",
-    "pk": 28,
+    "model": "custommail.variable",
     "fields": {
+        "custommail": 10,
+        "type": 7,
         "name": "matieres",
-        "description": "Liste des mati\u00e8res concern\u00e9es par la demande",
-        "custommail": 10,
-        "type": 7
-    }
+        "description": "Liste des mati\u00e8res concern\u00e9es par la demande"
+    },
+    "pk": 28
 },
 {
-    "model": "custommail.custommailvariable",
-    "pk": 29,
+    "model": "custommail.variable",
     "fields": {
+        "custommail": 11,
+        "type": 10,
         "name": "proposals",
-        "description": "Liste associant une liste d'enseignants \u00e0 chaque mati\u00e8re",
-        "custommail": 11,
-        "type": 10
-    }
+        "description": "Liste associant une liste d'enseignants \u00e0 chaque mati\u00e8re"
+    },
+    "pk": 29
 },
 {
-    "model": "custommail.custommailvariable",
-    "pk": 30,
+    "model": "custommail.variable",
     "fields": {
+        "custommail": 11,
+        "type": 7,
         "name": "unsatisfied",
-        "description": "Liste des mati\u00e8res pour lesquelles on n'a pas d'enseigant \u00e0 proposer",
-        "custommail": 11,
-        "type": 7
-    }
+        "description": "Liste des mati\u00e8res pour lesquelles on n'a pas d'enseigant \u00e0 proposer"
+    },
+    "pk": 30
 },
 {
-    "model": "custommail.custommailvariable",
-    "pk": 31,
+    "model": "custommail.variable",
     "fields": {
+        "custommail": 12,
+        "type": 11,
         "name": "places",
-        "description": "Places de spectacle du participant",
-        "custommail": 12,
-        "type": 11
-    }
+        "description": "Places de spectacle du participant"
+    },
+    "pk": 31
 },
 {
-    "model": "custommail.custommailvariable",
-    "pk": 32,
+    "model": "custommail.variable",
     "fields": {
-        "name": "member",
-        "description": "Participant du tirage au sort",
         "custommail": 12,
-        "type": 1
-    }
+        "type": 1,
+        "name": "member",
+        "description": "Participant du tirage au sort"
+    },
+    "pk": 32
 },
 {
-    "model": "custommail.custommailvariable",
-    "pk": 33,
+    "model": "custommail.variable",
     "fields": {
-        "name": "member",
-        "description": "Participant du tirage au sort",
         "custommail": 13,
-        "type": 1
-    }
+        "type": 1,
+        "name": "member",
+        "description": "Participant du tirage au sort"
+    },
+    "pk": 33
 }
 ]

From 785555c05cc874dfc2a9542608c0e94baffccc2e Mon Sep 17 00:00:00 2001
From: Ludovic Stephan <lstephan@clipper.ens.fr>
Date: Thu, 26 Oct 2017 12:40:11 +0200
Subject: [PATCH 046/101] Misc fixes

---
 bda/forms.py                      | 10 ++++++++--
 bda/migrations/0012_notif_time.py |  7 ++++---
 bda/models.py                     | 11 ++++++-----
 bda/views.py                      | 33 +++++++++++--------------------
 4 files changed, 30 insertions(+), 31 deletions(-)

diff --git a/bda/forms.py b/bda/forms.py
index 11d05b0e..2929f771 100644
--- a/bda/forms.py
+++ b/bda/forms.py
@@ -43,11 +43,13 @@ class TokenForm(forms.Form):
 
 class AttributionModelMultipleChoiceField(forms.ModelMultipleChoiceField):
     def label_from_instance(self, obj):
-        return "%s" % str(obj.spectacle)
+        return str(obj.spectacle)
+
 
 class ReventeModelMultipleChoiceField(forms.ModelMultipleChoiceField):
     def label_from_instance(self, obj):
-        return "%s" % str(obj.attribution.spectacle)
+        return str(obj.attribution.spectacle)
+
 
 class ResellForm(forms.Form):
     attributions = AttributionModelMultipleChoiceField(
@@ -66,6 +68,7 @@ class ResellForm(forms.Form):
                             'participant__user')
         )
 
+
 class AnnulForm(forms.Form):
     attributions = AttributionModelMultipleChoiceField(
                          label='',
@@ -85,6 +88,7 @@ class AnnulForm(forms.Form):
                             'participant__user')
         )
 
+
 class InscriptionReventeForm(forms.Form):
     spectacles = forms.ModelMultipleChoiceField(
                     queryset=Spectacle.objects.none(),
@@ -99,6 +103,7 @@ class InscriptionReventeForm(forms.Form):
             .filter(date__gte=timezone.now())
         )
 
+
 class ReventeTirageAnnulForm(forms.Form):
     reventes = ReventeModelMultipleChoiceField(
                   label='',
@@ -134,6 +139,7 @@ class ReventeTirageForm(forms.Form):
             .select_related('attribution__spectacle')
         )
 
+
 class SoldForm(forms.Form):
     attributions = AttributionModelMultipleChoiceField(
                         label='',
diff --git a/bda/migrations/0012_notif_time.py b/bda/migrations/0012_notif_time.py
index be66efd1..ee777e35 100644
--- a/bda/migrations/0012_notif_time.py
+++ b/bda/migrations/0012_notif_time.py
@@ -11,11 +11,12 @@ class Migration(migrations.Migration):
     ]
 
     operations = [
-        migrations.RemoveField(
+        migrations.RenameField(
             model_name='spectaclerevente',
-            name='answered_mail',
+            old_name='answered_mail',
+            new_name='confirmed_entry',
         ),
-        migrations.AddField(
+        migrations.AlterField(
             model_name='spectaclerevente',
             name='confirmed_entry',
             field=models.ManyToManyField(blank=True, related_name='entered', to='bda.Participant'),
diff --git a/bda/models.py b/bda/models.py
index 2ad47dbf..59827621 100644
--- a/bda/models.py
+++ b/bda/models.py
@@ -168,6 +168,7 @@ class Participant(models.Model):
     def __str__(self):
         return "%s - %s" % (self.user, self.tirage.title)
 
+
 DOUBLE_CHOICES = (
     ("1", "1 place"),
     ("autoquit", "2 places si possible, 1 sinon"),
@@ -292,15 +293,16 @@ class SpectacleRevente(models.Model):
     class Meta:
         verbose_name = "Revente"
 
-    def reset(self):
+    def reset(self, new_date=timezone.now()):
         """Réinitialise la revente pour permettre une remise sur le marché"""
         self.seller = self.attribution.participant
-        self.date = timezone.now()
+        self.date = new_date
         self.confirmed_entry.clear()
         self.soldTo = None
         self.notif_sent = False
         self.tirage_done = False
         self.shotgun = False
+        self.save()
 
     def send_notif(self):
         """
@@ -396,11 +398,10 @@ class SpectacleRevente(models.Model):
                     ))
             send_mass_custom_mail(datatuple)
 
-            return winner
-
         # Si personne ne veut de la place, elle part au shotgun
         else:
+            winner = None
             self.shotgun = True
-            return None
         self.tirage_done = True
         self.save()
+        return winner
diff --git a/bda/views.py b/bda/views.py
index 6ed22b21..fb1a2e82 100644
--- a/bda/views.py
+++ b/bda/views.py
@@ -5,7 +5,6 @@ import random
 import hashlib
 import time
 import json
-from datetime import timedelta
 from custommail.shortcuts import send_mass_custom_mail, send_custom_mail
 from custommail.models import CustomMail
 from django.shortcuts import render, get_object_or_404
@@ -14,6 +13,7 @@ from django.contrib import messages
 from django.db import transaction
 from django.core import serializers
 from django.db.models import Count, Q, Prefetch
+from django.template.defaultfilters import pluralize
 from django.forms.models import inlineformset_factory
 from django.http import (
     HttpResponseBadRequest, HttpResponseRedirect, JsonResponse
@@ -376,6 +376,7 @@ def revente_manage(request, tirage_id):
                                 defaults={'seller': participant})
                         if not created:
                             revente.reset()
+
                         context = {
                             'vendeur': participant.user,
                             'show': attribution.spectacle,
@@ -414,15 +415,10 @@ def revente_manage(request, tirage_id):
                 attributions = soldform.cleaned_data['attributions']
                 for attribution in attributions:
                     if attribution.spectacle.date > timezone.now():
-                        revente = attribution.revente
-                        revente.date = timezone.now() - timedelta(minutes=65)
-                        revente.soldTo = None
-                        revente.notif_sent = False
-                        revente.tirage_done = False
-                        revente.shotgun = False
-                        if revente.confirmed_entry:
-                            revente.confirmed_entry.clear()
-                        revente.save()
+                        # On antidate pour envoyer le mail plus vite
+                        new_date = (timezone.now()
+                                    - SpectacleRevente.remorse_time)
+                        revente.reset(new_date=new_date)
 
     overdue = participant.attribution_set.filter(
         spectacle__date__gte=timezone.now(),
@@ -442,7 +438,6 @@ def revente_tirages(request, tirage_id):
     tirage = get_object_or_404(Tirage, id=tirage_id)
     participant, _ = Participant.objects.get_or_create(
             user=request.user, tirage=tirage)
-    unsub = 0
     subform = ReventeTirageForm(participant, prefix="subscribe")
     annulform = ReventeTirageAnnulForm(participant, prefix="annul")
 
@@ -451,33 +446,29 @@ def revente_tirages(request, tirage_id):
             subform = ReventeTirageForm(participant, request.POST,
                                         prefix="subscribe")
             if subform.is_valid():
-                sub = 0
                 reventes = subform.cleaned_data['reventes']
+                count = reventes.count()
                 for revente in reventes:
                     revente.confirmed_entry.add(participant)
-                    sub += 1
-                if sub > 0:
-                    plural = "s" if sub > 1 else ""
+                if count > 0:
                     messages.success(
                         request,
                         "Tu as bien été inscrit à {} revente{}"
-                            .format(sub, plural)
+                            .format(count, pluralize(count))
                     )
         elif "annul" in request.POST:
             annulform = ReventeTirageAnnulForm(participant, request.POST,
                                                prefix="annul")
             if annulform.is_valid():
-                unsub = 0
                 reventes = annulform.cleaned_data['reventes']
+                count = reventes.count()
                 for revente in reventes:
                     revente.confirmed_entry.remove(participant)
-                    unsub += 1
-                if unsub > 0:
-                    plural = "s" if unsub > 1 else ""
+                if count > 0:
                     messages.success(
                         request,
                         "Tu as bien été désinscrit de {} revente{}"
-                            .format(unsub, plural)
+                            .format(count, pluralize(count))
                     )
 
     return render(request, "bda/revente/tirages.html",

From 1c90d067fa38542ca0877e8ba22dcd2a6108ad8f Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Martin=20P=C3=A9pin?= <martin.pepin@ens.fr>
Date: Thu, 26 Oct 2017 18:13:09 +0200
Subject: [PATCH 047/101] Make cof.settings a module

---
 cof/settings/__init__.py | 0
 1 file changed, 0 insertions(+), 0 deletions(-)
 create mode 100644 cof/settings/__init__.py

diff --git a/cof/settings/__init__.py b/cof/settings/__init__.py
new file mode 100644
index 00000000..e69de29b

From 895f7e062cc9da5d590f18c6ed36fa1f1e6738cf Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Aur=C3=A9lien=20Delobelle?= <aurelien.delobelle@gmail.com>
Date: Fri, 27 Oct 2017 03:00:33 +0200
Subject: [PATCH 048/101] Delete GlobalPermissions model (migrations)

It is an old model which doesn't exist anymore in kfet.models module.

This adds its missing DeleteModel in migrations.
---
 kfet/migrations/0062_delete_globalpermissions.py | 14 ++++++++++++++
 1 file changed, 14 insertions(+)
 create mode 100644 kfet/migrations/0062_delete_globalpermissions.py

diff --git a/kfet/migrations/0062_delete_globalpermissions.py b/kfet/migrations/0062_delete_globalpermissions.py
new file mode 100644
index 00000000..ee245412
--- /dev/null
+++ b/kfet/migrations/0062_delete_globalpermissions.py
@@ -0,0 +1,14 @@
+# -*- coding: utf-8 -*-
+from django.db import migrations
+
+
+class Migration(migrations.Migration):
+    dependencies = [
+        ('kfet', '0061_add_perms_config'),
+    ]
+
+    operations = [
+        migrations.DeleteModel(
+            name='GlobalPermissions',
+        ),
+    ]

From 93fa79128cd4688e8fbe1adb07db49409cc2d9d8 Mon Sep 17 00:00:00 2001
From: Qwann <narmanli@clipper.ens.fr>
Date: Tue, 31 Oct 2017 15:10:21 +0100
Subject: [PATCH 049/101] order table striped

---
 kfet/templates/kfet/order_create.html | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/kfet/templates/kfet/order_create.html b/kfet/templates/kfet/order_create.html
index 6ff9b824..d95cafe3 100644
--- a/kfet/templates/kfet/order_create.html
+++ b/kfet/templates/kfet/order_create.html
@@ -11,7 +11,7 @@
 <form action="" method="post">
   {% csrf_token %}
   <div class="table-responsive">
-  <table class="table table-hover table-condensed table-condensed-input text-center">
+  <table class="table table-hover table-condensed table-condensed-input text-center table-striped">
     <thead>
       <tr>
         <td rowspan="2">Article</td>

From 273e6374ef072c6b589ddb46268a8085a2085359 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Martin=20P=C3=A9pin?= <martin.pepin@ens.fr>
Date: Wed, 1 Nov 2017 11:09:16 +0100
Subject: [PATCH 050/101] Pluralization in bda -> participant list

---
 bda/templates/bda/participants.html | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/bda/templates/bda/participants.html b/bda/templates/bda/participants.html
index 85af4a2e..c3ff31d6 100644
--- a/bda/templates/bda/participants.html
+++ b/bda/templates/bda/participants.html
@@ -47,11 +47,11 @@
       <div>
         <button class="btn btn-default" type="button" onclick="toggle('export-salle')">Afficher/Cacher liste noms</button>
 	<pre id="export-salle" style="display:none">{% spaceless %}
-{% for participant in participants %}{{participant.name}} : {{participant.nb_places}} places
+{% for participant in participants %}{{ participant.name }} : {{ participant.nb_places }} place{{ participant.nb_places|pluralize }}
 {% endfor %}
 	{% endspaceless %}</pre>
       </div>
-    
+
       <div>
         <a href="{% url 'bda-rappels' spectacle.id %}">Page d'envoi manuel des mails de rappel</a>
       </div>

From f18959c0a1d643fab3b08921a004f158d4ba4720 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Martin=20P=C3=A9pin?= <martin.pepin@ens.fr>
Date: Wed, 1 Nov 2017 17:26:40 +0100
Subject: [PATCH 051/101] BdA-Revente: meaningful names, some help tests

---
 bda/templates/bda/revente/manage.html    | 58 +++++++++++++++++++-----
 bda/templates/bda/revente/subscribe.html | 39 ++++++++++------
 bda/templates/bda/revente/tirages.html   | 40 ++++++++++++----
 bda/views.py                             | 18 ++++++++
 gestioncof/static/css/cof.css            | 11 +++++
 gestioncof/templates/home.html           |  6 +--
 6 files changed, 136 insertions(+), 36 deletions(-)

diff --git a/bda/templates/bda/revente/manage.html b/bda/templates/bda/revente/manage.html
index 0912babb..8162d55d 100644
--- a/bda/templates/bda/revente/manage.html
+++ b/bda/templates/bda/revente/manage.html
@@ -3,50 +3,84 @@
 
 {% block realcontent %}
 
-<h2>Revente de place</h2>
+<h2>Gestion des places que je revends</h2>
 {% with resell_attributions=resellform.attributions annul_attributions=annulform.attributions sold_attributions=soldform.attributions %}
 
 {% if resellform.attributions %}
+<br />
+
 <h3>Places non revendues</h3>
 <form class="form-horizontal" action="" method="post">
-    {% csrf_token %}
-    {{resellform|bootstrap}}
+    <div class="bg-info text-info center-block">
+        <span class="glyphicon glyphicon-info-sign" aria-hidden="true"></span>
+        Cochez les places que vous souhaitez revendre, et validez. Vous aurez
+        ensuite 1h pour changer d'avis avant que la revente soit confirmée et
+        que les notifications soient envoyées aux intéressé·e·s.
+    </div>
+    <div class="bootstrap-form-reduce">
+        {% csrf_token %}
+        {{ resellform|bootstrap }}
+    </div>
     <div class="form-actions">
         <input type="submit" class="btn btn-primary" name="resell" value="Revendre les places sélectionnées">
     </div>
 </form>
+
+<hr />
 {% endif %}
-<br>
+
 {% if annul_attributions or overdue %}
 <h3>Places en cours de revente</h3>
 <form action="" method="post">
+    {% if annul_attributions %}
+        <div class="bg-info text-info center-block">
+            <span class="glyphicon glyphicon-info-sign" aria-hidden="true"></span>
+            Vous pouvez annuler les places mises en vente il y a moins d'une heure.
+        </div>
+    {% endif %}
     {% csrf_token %}
     <div class='form-group'>
         <div class='multiple-checkbox'>
             <ul>
                 {% for attrib in annul_attributions %}
-                    <li>{{attrib.tag}} {{attrib.choice_label}}</li>
+                    <li>{{ attrib.tag }} {{ attrib.choice_label }}</li>
                 {% endfor %}
                 {% for attrib in overdue %}
                     <li>
                         <input type="checkbox" style="visibility:hidden">
-                        {{attrib.spectacle}}
+                        {{ attrib.spectacle }}
                     </li>
                 {% endfor %}
+            </ul>
+        </div>
+    </div>
     {% if annul_attributions %}
     <input type="submit" class="btn btn-primary" name="annul" value="Annuler les reventes sélectionnées">
     {% endif %}
 </form>
+
+<hr />
 {% endif %}
-<br>
+
 {% if sold_attributions %}
 <h3>Places revendues</h3>
-    <form action="" method="post">
+<form action="" method="post">
+    <div class="bg-info text-info center-block">
+        <span class="glyphicon glyphicon-info-sign" aria-hidden="true"></span>
+        Pour chaque revente, vous devez soit l'annuler soit la confirmer pour
+        transférer la place la place à la personne tirée au sort.
+
+        L'annulation sert par exemple à pouvoir remettre la place en jeu si
+        vous ne parvenez pas à entrer en contact avec la personne tirée au
+        sort.
+    </div>
+    <div class="bootstrap-form-reduce">
         {% csrf_token %}
-        {{soldform|bootstrap}}
-        <button type="submit" class="btn btn-primary" name="transfer">Transférer</button>
-        <button type="submit" class="btn btn-primary" name="reinit">Réinitialiser</button>
-    </form>
+        {{ soldform|bootstrap }}
+    </div>
+    <button type="submit" class="btn btn-primary" name="transfer">Transférer</button>
+    <button type="submit" class="btn btn-primary" name="reinit">Réinitialiser</button>
+</form>
 {% endif %}
 {% if not resell_attributions and not annul_attributions and not overdue and not sold_attributions %}
 <p>Plus de reventes possibles !</p>
diff --git a/bda/templates/bda/revente/subscribe.html b/bda/templates/bda/revente/subscribe.html
index fcf57345..9a193908 100644
--- a/bda/templates/bda/revente/subscribe.html
+++ b/bda/templates/bda/revente/subscribe.html
@@ -4,28 +4,41 @@
 {% block realcontent %}
   <h2>Inscriptions pour BdA-Revente</h2>
   <form action="" class="form-horizontal" method="post">
+    <div class="bg-info text-info center-block">
+        <span class="glyphicon glyphicon-info-sign" aria-hidden="true"></span>
+        Cochez les spectacles pour lesquels vous souhaitez recevoir un
+        notification quand une place est disponible en revente. <br />
+        Lorsque vous validez vos choix, si un tirage au sort est en cours pour
+        un des spectacles que vous avez sélectionné, vous serez automatiquement
+        inscrit à ce tirage.
+    </div>
+    <br />
     {% csrf_token %}
     <div class="form-group">
-        <h3>Spectacles</h3>
-        <br/>
-      <button type="button" class="btn btn-primary" onClick="select(true)">Tout sélectionner</button>
-      <button type="button" class="btn btn-primary" onClick="select(false)">Tout désélectionner</button>
+      <button type="button"
+              class="btn btn-primary"
+              onClick="select(true)">Tout sélectionner</button>
+      <button type="button"
+              class="btn btn-primary"
+              onClick="select(false)">Tout désélectionner</button>
 
-        <div class="multiple-checkbox">
-            <ul>
-                {% for checkbox in form.spectacles %}
-                <li>{{checkbox}}</li>
-                {%endfor%}
-            </ul>
-        </div>
+      <div class="multiple-checkbox">
+        <ul>
+          {% for checkbox in form.spectacles %}
+            <li>{{ checkbox }}</li>
+          {% endfor %}
+        </ul>
+      </div>
     </div>
-  <input type="submit" class="btn btn-primary" value="S'inscrire pour les places sélectionnées">
+    <input type="submit"
+           class="btn btn-primary"
+           value="S'inscrire pour les places sélectionnées">
   </form>
 
 <script language="JavaScript">
 function select(check) {
     checkboxes = document.getElementsByName("spectacles");
-    for(var i=0, n=checkboxes.length;i<n;i++) {
+    for(var i=0, n=checkboxes.length; i < n; i++) {
         checkboxes[i].checked = check;
     }
 }
diff --git a/bda/templates/bda/revente/tirages.html b/bda/templates/bda/revente/tirages.html
index bd738673..91d39c90 100644
--- a/bda/templates/bda/revente/tirages.html
+++ b/bda/templates/bda/revente/tirages.html
@@ -4,25 +4,49 @@
 {% block realcontent %}
 
 <h2>Tirages au sort de reventes</h2>
+
 {% if annulform.reventes %}
-<h3>Mes inscriptions</h3>
+<h3>Les reventes auxquelles vous êtes inscrit·e</h3>
 <form class="form-horizontal" action="" method="post">
-    {% csrf_token %}
-    {{annulform|bootstrap}}
+    <div class="bg-info text-info center-block">
+        <span class="glyphicon glyphicon-info-sign" aria-hidden="true"></span>
+        Vous pouvez vous désinscrire des reventes suivantes tant que le tirage n'a
+        pas eu lieu
+    </div>
+    <div class="bootstrap-form-reduce">
+        {% csrf_token %}
+        {{ annulform|bootstrap }}
+    </div>
     <div class="form-actions">
-        <input type="submit" class="btn btn-primary" name="annul" value="Se désinscrire des tirages sélectionnés">
+        <input type="submit"
+               class="btn btn-primary"
+               name="annul"
+               value="Se désinscrire des tirages sélectionnés">
     </div>
 </form>
+
+<hr />
 {% endif %}
-<br>
+
 {% if subform.reventes %}
+
 <h3>Tirages en cours</h3>
 <form class="form-horizontal" action="" method="post">
-    {% csrf_token %}
-    {{subform|bootstrap}}
+    <div class="bg-info text-info center-block">
+        <span class="glyphicon glyphicon-info-sign" aria-hidden="true"></span>
+        Vous pouvez vous inscrire aux tirage en cours suivants
+    </div>
+    <div class="bootstrap-form-reduce">
+        {% csrf_token %}
+        {{ subform|bootstrap }}
+    </div>
     <div class="form-actions">
-        <input type="submit" class="btn btn-primary" name="subscribe" value="S'inscrire aux tirages sélectionnés">
+        <input type="submit"
+               class="btn btn-primary"
+               name="subscribe"
+               value="S'inscrire aux tirages sélectionnés">
     </div>
 </form>
 {% endif %}
+
 {% endblock %}
diff --git a/bda/views.py b/bda/views.py
index fb1a2e82..67fa2486 100644
--- a/bda/views.py
+++ b/bda/views.py
@@ -350,6 +350,14 @@ def tirage(request, tirage_id):
 
 @login_required
 def revente_manage(request, tirage_id):
+    """
+    Gestion de ses propres reventes :
+    - Création d'une revente
+    - Annulation d'une revente
+    - Confirmation d'une revente = transfert de la place à la personne qui
+      rachète
+    - Annulation d'une revente après que le tirage a eu lieu
+    """
     tirage = get_object_or_404(Tirage, id=tirage_id)
     participant, created = Participant.objects.get_or_create(
         user=request.user, tirage=tirage)
@@ -435,6 +443,10 @@ def revente_manage(request, tirage_id):
 
 @login_required
 def revente_tirages(request, tirage_id):
+    """
+    Affiche à un participant la liste de toutes les reventes en cours (pour un
+    tirage donné) et lui permet de s'inscrire et se désinscrire à ces reventes.
+    """
     tirage = get_object_or_404(Tirage, id=tirage_id)
     participant, _ = Participant.objects.get_or_create(
             user=request.user, tirage=tirage)
@@ -492,6 +504,12 @@ def revente_confirm(request, revente_id):
 
 @login_required
 def revente_subscribe(request, tirage_id):
+    """
+    Permet à un participant de sélectionner ses préférences pour les reventes.
+    Il recevra des notifications pour les spectacles qui l'intéressent et il
+    est automatiquement inscrit aux reventes en cours au moment où il ajoute un
+    spectacle à la liste des spectacles qui l'intéressent.
+    """
     tirage = get_object_or_404(Tirage, id=tirage_id)
     participant, _ = Participant.objects.get_or_create(
         user=request.user, tirage=tirage)
diff --git a/gestioncof/static/css/cof.css b/gestioncof/static/css/cof.css
index 91cf726a..84c81d60 100644
--- a/gestioncof/static/css/cof.css
+++ b/gestioncof/static/css/cof.css
@@ -1140,3 +1140,14 @@ p.help-block {
   margin: 5px auto;
   width: 90%;
 }
+
+div.bg-info {
+  border-radius: 3px;
+  padding: 0.3em 1em;
+  margin-left: 1em;
+  margin-right: 1em;
+}
+
+.bootstrap-form-reduce > .form-group {
+  margin-top: -16px;
+}
diff --git a/gestioncof/templates/home.html b/gestioncof/templates/home.html
index 943ef780..0de68c8d 100644
--- a/gestioncof/templates/home.html
+++ b/gestioncof/templates/home.html
@@ -43,9 +43,9 @@
                             <li><a href="{% url "bda-etat-places" tirage.id %}">État des demandes</a></li>
                         {% else %}
                             <li><a href="{% url "bda-places-attribuees" tirage.id %}">Mes places</a></li> 
-                            <li><a href="{% url "bda-revente-manage" tirage.id %}">Gestion de mes reventes</a></li> 
-                            <li><a href="{% url "bda-revente-tirages" tirage.id %}">Reventes en cours</a></li> 
-                            <li><a href="{% url "bda-revente-subscribe" tirage.id %}">S'inscrire à BdA-Revente</a></li>
+                            <li><a href="{% url "bda-revente-manage" tirage.id %}">Gérer les places que je revends</a></li> 
+                            <li><a href="{% url "bda-revente-tirages" tirage.id %}">Voir les reventes en cours</a></li> 
+                            <li><a href="{% url "bda-revente-subscribe" tirage.id %}">Indiquer les spectacles qui m'intéressent</a></li>
                             <li><a href="{% url "bda-revente-shotgun" tirage.id %}">Places disponibles immédiatement</a></li>
                         {% endif %}
                     </ul> 

From 91bdf11852ae900595ffc23f37391ec0cf4c8f38 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Martin=20P=C3=A9pin?= <martin.pepin@ens.fr>
Date: Wed, 1 Nov 2017 17:29:38 +0100
Subject: [PATCH 052/101] Coding style: python's scope sucks

---
 bda/models.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/bda/models.py b/bda/models.py
index 59827621..45c7db2a 100644
--- a/bda/models.py
+++ b/bda/models.py
@@ -361,6 +361,7 @@ class SpectacleRevente(models.Model):
         inscrits = list(self.confirmed_entry.all())
         spectacle = self.attribution.spectacle
         seller = self.seller
+        winner = None
 
         if inscrits:
             # Envoie un mail au gagnant et au vendeur
@@ -400,7 +401,6 @@ class SpectacleRevente(models.Model):
 
         # Si personne ne veut de la place, elle part au shotgun
         else:
-            winner = None
             self.shotgun = True
         self.tirage_done = True
         self.save()

From b0b0542407384fe7988162119228edf286eecb7a Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Aur=C3=A9lien=20Delobelle?= <aurelien.delobelle@gmail.com>
Date: Sun, 19 Nov 2017 18:41:39 +0100
Subject: [PATCH 053/101] Upgrade to Django 1.11

- Deprecation warnings using Django 1.8 are resolved.
- Deprecation warnings using Django 1.11 are resolved.

- Admin: grappelli is no longer used.
- Upgrade to django-autocomplete-light v3 (v2 is not 1.11 compatible).
  * autocomplete.modelform_factory being dropped, code uses dal Select2
    views and widgets.
---
 bda/admin.py                                  | 15 +++-
 bda/autocomplete_light_registry.py            | 18 -----
 bda/migrations/0001_initial.py                | 12 +--
 bda/migrations/0002_add_tirage.py             | 10 +--
 bda/migrations/0007_extends_spectacle.py      |  4 +-
 bda/migrations/0009_revente.py                |  3 +
 bda/models.py                                 | 50 ++++++++----
 bda/urls.py                                   |  6 ++
 bda/views.py                                  | 25 ++++++
 cof/settings/common.py                        | 17 ++--
 cof/settings/dev.py                           | 11 +--
 cof/urls.py                                   | 25 +++---
 gestioncof/admin.py                           | 12 ++-
 gestioncof/autocomplete_light_registry.py     | 10 ---
 gestioncof/migrations/0001_initial.py         | 40 +++++-----
 gestioncof/migrations/0006_add_calendar.py    |  3 +-
 gestioncof/models.py                          | 51 ++++++++----
 gestioncof/petits_cours_models.py             | 31 ++++++--
 gestioncof/petits_cours_views.py              |  4 +-
 gestioncof/templates/admin/base_site.html     |  6 --
 gestioncof/templates/admin/index.html         | 78 -------------------
 .../templates/gestioncof/base_header.html     |  4 +-
 gestioncof/templates/gestioncof/event.html    |  2 +-
 gestioncof/templates/home.html                | 20 ++---
 gestioncof/templates/login.html               |  2 +-
 gestioncof/templates/login_switch.html        |  4 +-
 .../registration/password_change_done.html    |  2 +-
 .../registration/password_change_form.html    |  2 +-
 gestioncof/urls.py                            | 18 +++--
 gestioncof/views.py                           | 21 ++++-
 kfet/auth/middleware.py                       |  9 ++-
 kfet/auth/tests.py                            |  8 +-
 kfet/cms/migrations/0001_initial.py           |  2 +-
 kfet/models.py                                |  2 +-
 kfet/templates/kfet/base_nav.html             | 10 ++-
 kfet/tests/test_views.py                      |  2 +-
 kfet/tests/testcases.py                       |  4 +-
 kfet/tests/utils.py                           |  2 +-
 kfet/views.py                                 | 28 ++++---
 requirements-devel.txt                        |  2 +-
 requirements.txt                              | 18 ++---
 utils/__init__.py                             |  0
 utils/views/__init__.py                       |  0
 utils/views/autocomplete.py                   | 26 +++++++
 44 files changed, 341 insertions(+), 278 deletions(-)
 delete mode 100644 bda/autocomplete_light_registry.py
 delete mode 100644 gestioncof/autocomplete_light_registry.py
 delete mode 100644 gestioncof/templates/admin/base_site.html
 delete mode 100644 gestioncof/templates/admin/index.html
 create mode 100644 utils/__init__.py
 create mode 100644 utils/views/__init__.py
 create mode 100644 utils/views/autocomplete.py

diff --git a/bda/admin.py b/bda/admin.py
index 60d3c1ba..6638ad45 100644
--- a/bda/admin.py
+++ b/bda/admin.py
@@ -1,6 +1,5 @@
 # -*- coding: utf-8 -*-
 
-import autocomplete_light
 from datetime import timedelta
 from custommail.shortcuts import send_mass_custom_mail
 
@@ -9,6 +8,9 @@ from django.db.models import Sum, Count
 from django.template.defaultfilters import pluralize
 from django.utils import timezone
 from django import forms
+
+from dal.autocomplete import ModelSelect2
+
 from bda.models import Spectacle, Salle, Participant, ChoixSpectacle,\
     Attribution, Tirage, Quote, CategorieSpectacle, SpectacleRevente
 
@@ -24,8 +26,17 @@ class ReadOnlyMixin(object):
             return readonly_fields + self.readonly_fields_update
 
 
+class ChoixSpectacleAdminForm(forms.ModelForm):
+    class Meta:
+        widgets = {
+            'participant': ModelSelect2(url='bda-participant-autocomplete'),
+            'spectacle': ModelSelect2(url='bda-spectacle-autocomplete'),
+        }
+
+
 class ChoixSpectacleInline(admin.TabularInline):
     model = ChoixSpectacle
+    form = ChoixSpectacleAdminForm
     sortable_field_name = "priority"
 
 
@@ -180,7 +191,7 @@ class AttributionAdmin(ReadOnlyMixin, admin.ModelAdmin):
 
 
 class ChoixSpectacleAdmin(admin.ModelAdmin):
-    form = autocomplete_light.modelform_factory(ChoixSpectacle, exclude=[])
+    form = ChoixSpectacleAdminForm
 
     def tirage(self, obj):
         return obj.participant.tirage
diff --git a/bda/autocomplete_light_registry.py b/bda/autocomplete_light_registry.py
deleted file mode 100644
index 6c2f3ea6..00000000
--- a/bda/autocomplete_light_registry.py
+++ /dev/null
@@ -1,18 +0,0 @@
-# -*- coding: utf-8 -*-
-
-from __future__ import division
-from __future__ import print_function
-from __future__ import unicode_literals
-
-import autocomplete_light
-
-from bda.models import Participant, Spectacle
-
-autocomplete_light.register(
-    Participant, search_fields=('user__username', 'user__first_name',
-                                'user__last_name'),
-    autocomplete_js_attributes={'placeholder': 'participant...'})
-
-autocomplete_light.register(
-    Spectacle, search_fields=('title', ),
-    autocomplete_js_attributes={'placeholder': 'spectacle...'})
diff --git a/bda/migrations/0001_initial.py b/bda/migrations/0001_initial.py
index aa2cb252..c4494413 100644
--- a/bda/migrations/0001_initial.py
+++ b/bda/migrations/0001_initial.py
@@ -59,7 +59,7 @@ class Migration(migrations.Migration):
                 ('price', models.FloatField(verbose_name=b"Prix d'une place", blank=True)),
                 ('slots', models.IntegerField(verbose_name=b'Places')),
                 ('priority', models.IntegerField(default=1000, verbose_name=b'Priorit\xc3\xa9')),
-                ('location', models.ForeignKey(to='bda.Salle')),
+                ('location', models.ForeignKey(to='bda.Salle', on_delete=models.CASCADE)),
             ],
             options={
                 'ordering': ('priority', 'date', 'title'),
@@ -79,27 +79,27 @@ class Migration(migrations.Migration):
         migrations.AddField(
             model_name='participant',
             name='user',
-            field=models.OneToOneField(to=settings.AUTH_USER_MODEL),
+            field=models.OneToOneField(to=settings.AUTH_USER_MODEL, on_delete=models.CASCADE),
         ),
         migrations.AddField(
             model_name='choixspectacle',
             name='participant',
-            field=models.ForeignKey(to='bda.Participant'),
+            field=models.ForeignKey(to='bda.Participant', on_delete=models.CASCADE),
         ),
         migrations.AddField(
             model_name='choixspectacle',
             name='spectacle',
-            field=models.ForeignKey(related_name='participants', to='bda.Spectacle'),
+            field=models.ForeignKey(related_name='participants', to='bda.Spectacle', on_delete=models.CASCADE),
         ),
         migrations.AddField(
             model_name='attribution',
             name='participant',
-            field=models.ForeignKey(to='bda.Participant'),
+            field=models.ForeignKey(to='bda.Participant', on_delete=models.CASCADE),
         ),
         migrations.AddField(
             model_name='attribution',
             name='spectacle',
-            field=models.ForeignKey(related_name='attribues', to='bda.Spectacle'),
+            field=models.ForeignKey(related_name='attribues', to='bda.Spectacle', on_delete=models.CASCADE),
         ),
         migrations.AlterUniqueTogether(
             name='choixspectacle',
diff --git a/bda/migrations/0002_add_tirage.py b/bda/migrations/0002_add_tirage.py
index 22c387a0..79f79a57 100644
--- a/bda/migrations/0002_add_tirage.py
+++ b/bda/migrations/0002_add_tirage.py
@@ -55,7 +55,7 @@ class Migration(migrations.Migration):
         migrations.AlterField(
             model_name='participant',
             name='user',
-            field=models.ForeignKey(to=settings.AUTH_USER_MODEL),
+            field=models.ForeignKey(to=settings.AUTH_USER_MODEL, on_delete=models.CASCADE),
         ),
         # Create fields `spectacle` for `Participant` and `Spectacle` models.
         # These fields are not nullable, but we first create them as nullable
@@ -63,22 +63,22 @@ class Migration(migrations.Migration):
         migrations.AddField(
             model_name='participant',
             name='tirage',
-            field=models.ForeignKey(to='bda.Tirage', null=True),
+            field=models.ForeignKey(to='bda.Tirage', null=True, on_delete=models.CASCADE),
         ),
         migrations.AddField(
             model_name='spectacle',
             name='tirage',
-            field=models.ForeignKey(to='bda.Tirage', null=True),
+            field=models.ForeignKey(to='bda.Tirage', null=True, on_delete=models.CASCADE),
         ),
         migrations.RunPython(fill_tirage_fields, migrations.RunPython.noop),
         migrations.AlterField(
             model_name='participant',
             name='tirage',
-            field=models.ForeignKey(to='bda.Tirage'),
+            field=models.ForeignKey(to='bda.Tirage', on_delete=models.CASCADE),
         ),
         migrations.AlterField(
             model_name='spectacle',
             name='tirage',
-            field=models.ForeignKey(to='bda.Tirage'),
+            field=models.ForeignKey(to='bda.Tirage', on_delete=models.CASCADE),
         ),
     ]
diff --git a/bda/migrations/0007_extends_spectacle.py b/bda/migrations/0007_extends_spectacle.py
index b95c18de..6ea11dc0 100644
--- a/bda/migrations/0007_extends_spectacle.py
+++ b/bda/migrations/0007_extends_spectacle.py
@@ -73,6 +73,7 @@ class Migration(migrations.Migration):
             model_name='spectacle',
             name='category',
             field=models.ForeignKey(blank=True, to='bda.CategorieSpectacle',
+                                    on_delete=models.CASCADE,
                                     null=True),
         ),
         migrations.AddField(
@@ -84,6 +85,7 @@ class Migration(migrations.Migration):
         migrations.AddField(
             model_name='quote',
             name='spectacle',
-            field=models.ForeignKey(to='bda.Spectacle'),
+            field=models.ForeignKey(to='bda.Spectacle',
+                                    on_delete=models.CASCADE),
         ),
     ]
diff --git a/bda/migrations/0009_revente.py b/bda/migrations/0009_revente.py
index 1cca4e86..70d6f338 100644
--- a/bda/migrations/0009_revente.py
+++ b/bda/migrations/0009_revente.py
@@ -47,12 +47,14 @@ class Migration(migrations.Migration):
             model_name='spectaclerevente',
             name='attribution',
             field=models.OneToOneField(to='bda.Attribution',
+                                       on_delete=models.CASCADE,
                                        related_name='revente'),
         ),
         migrations.AddField(
             model_name='spectaclerevente',
             name='seller',
             field=models.ForeignKey(to='bda.Participant',
+                                    on_delete=models.CASCADE,
                                     verbose_name='Vendeur',
                                     related_name='original_shows'),
         ),
@@ -60,6 +62,7 @@ class Migration(migrations.Migration):
             model_name='spectaclerevente',
             name='soldTo',
             field=models.ForeignKey(to='bda.Participant',
+                                    on_delete=models.CASCADE,
                                     verbose_name='Vendue à', null=True,
                                     blank=True),
         ),
diff --git a/bda/models.py b/bda/models.py
index 41462d70..ba9ccf4a 100644
--- a/bda/models.py
+++ b/bda/models.py
@@ -59,9 +59,12 @@ class CategorieSpectacle(models.Model):
 
 class Spectacle(models.Model):
     title = models.CharField("Titre", max_length=300)
-    category = models.ForeignKey(CategorieSpectacle, blank=True, null=True)
+    category = models.ForeignKey(
+        CategorieSpectacle, on_delete=models.CASCADE,
+        blank=True, null=True,
+    )
     date = models.DateTimeField("Date & heure")
-    location = models.ForeignKey(Salle)
+    location = models.ForeignKey(Salle, on_delete=models.CASCADE)
     vips = models.TextField('Personnalités', blank=True)
     description = models.TextField("Description", blank=True)
     slots_description = models.TextField("Description des places", blank=True)
@@ -71,7 +74,7 @@ class Spectacle(models.Model):
                                 max_length=500)
     price = models.FloatField("Prix d'une place")
     slots = models.IntegerField("Places")
-    tirage = models.ForeignKey(Tirage)
+    tirage = models.ForeignKey(Tirage, on_delete=models.CASCADE)
     listing = models.BooleanField("Les places sont sur listing")
     rappel_sent = models.DateTimeField("Mail de rappel envoyé", blank=True,
                                        null=True)
@@ -135,7 +138,7 @@ class Spectacle(models.Model):
 
 
 class Quote(models.Model):
-    spectacle = models.ForeignKey(Spectacle)
+    spectacle = models.ForeignKey(Spectacle, on_delete=models.CASCADE)
     text = models.TextField('Citation')
     author = models.CharField('Auteur', max_length=200)
 
@@ -149,7 +152,7 @@ PAYMENT_TYPES = (
 
 
 class Participant(models.Model):
-    user = models.ForeignKey(User)
+    user = models.ForeignKey(User, on_delete=models.CASCADE)
     choices = models.ManyToManyField(Spectacle,
                                      through="ChoixSpectacle",
                                      related_name="chosen_by")
@@ -160,7 +163,7 @@ class Participant(models.Model):
     paymenttype = models.CharField("Moyen de paiement",
                                    max_length=6, choices=PAYMENT_TYPES,
                                    blank=True)
-    tirage = models.ForeignKey(Tirage)
+    tirage = models.ForeignKey(Tirage, on_delete=models.CASCADE)
     choicesrevente = models.ManyToManyField(Spectacle,
                                             related_name="subscribed",
                                             blank=True)
@@ -176,8 +179,11 @@ DOUBLE_CHOICES = (
 
 
 class ChoixSpectacle(models.Model):
-    participant = models.ForeignKey(Participant)
-    spectacle = models.ForeignKey(Spectacle, related_name="participants")
+    participant = models.ForeignKey(Participant, on_delete=models.CASCADE)
+    spectacle = models.ForeignKey(
+        Spectacle, on_delete=models.CASCADE,
+        related_name="participants",
+    )
     priority = models.PositiveIntegerField("Priorité")
     double_choice = models.CharField("Nombre de places",
                                      default="1", choices=DOUBLE_CHOICES,
@@ -204,8 +210,11 @@ class ChoixSpectacle(models.Model):
 
 
 class Attribution(models.Model):
-    participant = models.ForeignKey(Participant)
-    spectacle = models.ForeignKey(Spectacle, related_name="attribues")
+    participant = models.ForeignKey(Participant, on_delete=models.CASCADE)
+    spectacle = models.ForeignKey(
+        Spectacle, on_delete=models.CASCADE,
+        related_name="attribues",
+    )
     given = models.BooleanField("Donnée", default=False)
 
     def __str__(self):
@@ -214,18 +223,25 @@ class Attribution(models.Model):
 
 
 class SpectacleRevente(models.Model):
-    attribution = models.OneToOneField(Attribution,
-                                       related_name="revente")
+    attribution = models.OneToOneField(
+        Attribution, on_delete=models.CASCADE,
+        related_name="revente",
+    )
     date = models.DateTimeField("Date de mise en vente",
                                 default=timezone.now)
     answered_mail = models.ManyToManyField(Participant,
                                            related_name="wanted",
                                            blank=True)
-    seller = models.ForeignKey(Participant,
-                               related_name="original_shows",
-                               verbose_name="Vendeur")
-    soldTo = models.ForeignKey(Participant, blank=True, null=True,
-                               verbose_name="Vendue à")
+    seller = models.ForeignKey(
+        Participant, on_delete=models.CASCADE,
+        verbose_name="Vendeur",
+        related_name="original_shows",
+    )
+    soldTo = models.ForeignKey(
+        Participant, on_delete=models.CASCADE,
+        verbose_name="Vendue à",
+        blank=True, null=True,
+    )
 
     notif_sent = models.BooleanField("Notification envoyée",
                                      default=False)
diff --git a/bda/urls.py b/bda/urls.py
index 876c84ea..6acc1746 100644
--- a/bda/urls.py
+++ b/bda/urls.py
@@ -32,6 +32,12 @@ urlpatterns = [
     url(r'^spectacles/unpaid/(?P<tirage_id>\d+)$',
         views.unpaid,
         name="bda-unpaid"),
+    url(r'^spectacles/autocomplete$',
+        views.spectacle_autocomplete,
+        name="bda-spectacle-autocomplete"),
+    url(r'^participants/autocomplete$',
+        views.participant_autocomplete,
+        name="bda-participant-autocomplete"),
     url(r'^liste-revente/(?P<tirage_id>\d+)$',
         views.list_revente,
         name="bda-liste-revente"),
diff --git a/bda/views.py b/bda/views.py
index 84b6c9d3..6c4edff8 100644
--- a/bda/views.py
+++ b/bda/views.py
@@ -33,6 +33,8 @@ from bda.forms import (
     InscriptionInlineFormSet,
 )
 
+from utils.views.autocomplete import Select2QuerySetView
+
 
 @cof_required
 def etat_places(request, tirage_id):
@@ -813,3 +815,26 @@ def catalogue(request, request_type):
         return JsonResponse(data_return, safe=False)
     # Si la requête n'est pas de la forme attendue, on quitte avec une erreur
     return HttpResponseBadRequest()
+
+
+##
+# Autocomplete views
+#
+# https://django-autocomplete-light.readthedocs.io/en/master/tutorial.html#create-an-autocomplete-view
+##
+
+
+class ParticipantAutocomplete(Select2QuerySetView):
+    model = Participant
+    search_fields = ('user__username', 'user__first_name', 'user__last_name')
+
+
+participant_autocomplete = buro_required(ParticipantAutocomplete.as_view())
+
+
+class SpectacleAutocomplete(Select2QuerySetView):
+    model = Spectacle
+    search_fields = ('title',)
+
+
+spectacle_autocomplete = buro_required(SpectacleAutocomplete.as_view())
diff --git a/cof/settings/common.py b/cof/settings/common.py
index a2ea3f5e..48242fc3 100644
--- a/cof/settings/common.py
+++ b/cof/settings/common.py
@@ -57,17 +57,22 @@ BASE_DIR = os.path.dirname(
 # Application definition
 INSTALLED_APPS = [
     'gestioncof',
+
+    # Must be before 'django.contrib.admin'.
+    # https://django-autocomplete-light.readthedocs.io/en/master/install.html
+    'dal',
+    'dal_select2',
+
     'django.contrib.auth',
     'django.contrib.contenttypes',
     'django.contrib.sessions',
     'django.contrib.sites',
     'django.contrib.messages',
     'django.contrib.staticfiles',
-    'grappelli',
     'django.contrib.admin',
     'django.contrib.admindocs',
+
     'bda',
-    'autocomplete_light',
     'captcha',
     'django_cas_ng',
     'bootstrapform',
@@ -96,7 +101,7 @@ INSTALLED_APPS = [
     'kfet.cms',
 ]
 
-MIDDLEWARE_CLASSES = [
+MIDDLEWARE = [
     'django.contrib.sessions.middleware.SessionMiddleware',
     'django.middleware.common.CommonMiddleware',
     'django.middleware.csrf.CsrfViewMiddleware',
@@ -124,9 +129,9 @@ TEMPLATES = [
                 'django.template.context_processors.request',
                 'django.contrib.auth.context_processors.auth',
                 'django.contrib.messages.context_processors.messages',
-                'django.core.context_processors.i18n',
-                'django.core.context_processors.media',
-                'django.core.context_processors.static',
+                'django.template.context_processors.i18n',
+                'django.template.context_processors.media',
+                'django.template.context_processors.static',
                 'wagtailmenus.context_processors.wagtailmenus',
                 'djconfig.context_processors.config',
                 'gestioncof.shared.context_processor',
diff --git a/cof/settings/dev.py b/cof/settings/dev.py
index 9c622063..6e1f6b11 100644
--- a/cof/settings/dev.py
+++ b/cof/settings/dev.py
@@ -4,7 +4,7 @@ The settings that are not listed here are imported from .common
 """
 
 from .common import *  # NOQA
-from .common import INSTALLED_APPS, MIDDLEWARE_CLASSES
+from .common import INSTALLED_APPS, MIDDLEWARE
 
 
 EMAIL_BACKEND = 'django.core.mail.backends.console.EmailBackend'
@@ -37,10 +37,11 @@ def show_toolbar(request):
     return DEBUG
 
 INSTALLED_APPS += ["debug_toolbar", "debug_panel"]
-MIDDLEWARE_CLASSES = (
-    ["debug_panel.middleware.DebugPanelMiddleware"]
-    + MIDDLEWARE_CLASSES
-)
+
+MIDDLEWARE = [
+    "debug_panel.middleware.DebugPanelMiddleware"
+] + MIDDLEWARE
+
 DEBUG_TOOLBAR_CONFIG = {
     'SHOW_TOOLBAR_CALLBACK': show_toolbar,
 }
diff --git a/cof/urls.py b/cof/urls.py
index f62d5f01..e6e5d313 100644
--- a/cof/urls.py
+++ b/cof/urls.py
@@ -4,8 +4,6 @@
 Fichier principal de configuration des urls du projet GestioCOF
 """
 
-import autocomplete_light
-
 from django.conf import settings
 from django.conf.urls import include, url
 from django.conf.urls.static import static
@@ -24,7 +22,6 @@ from gestioncof.urls import export_patterns, petitcours_patterns, \
     clubs_patterns
 from gestioncof.autocomplete import autocomplete
 
-autocomplete_light.autodiscover()
 admin.autodiscover()
 
 urlpatterns = [
@@ -49,18 +46,22 @@ urlpatterns = [
         name="cof-denied"),
     url(r'^cas/login$', django_cas_views.login, name="cas_login_view"),
     url(r'^cas/logout$', django_cas_views.logout),
-    url(r'^outsider/login$', gestioncof_views.login_ext),
+    url(r'^outsider/login$', gestioncof_views.login_ext,
+        name="ext_login_view"),
     url(r'^outsider/logout$', django_views.logout, {'next_page': 'home'}),
     url(r'^login$', gestioncof_views.login, name="cof-login"),
     url(r'^logout$', gestioncof_views.logout, name="cof-logout"),
     # Infos persos
-    url(r'^profile$', gestioncof_views.profile),
-    url(r'^outsider/password-change$', django_views.password_change),
+    url(r'^profile$', gestioncof_views.profile,
+        name='profile'),
+    url(r'^outsider/password-change$', django_views.password_change,
+        name='password_change'),
     url(r'^outsider/password-change-done$',
         django_views.password_change_done,
         name='password_change_done'),
     # Inscription d'un nouveau membre
-    url(r'^registration$', gestioncof_views.registration),
+    url(r'^registration$', gestioncof_views.registration,
+        name='registration'),
     url(r'^registration/clipper/(?P<login_clipper>[\w-]+)/'
         r'(?P<fullname>.*)$',
         gestioncof_views.registration_form2, name="clipper-registration"),
@@ -70,7 +71,8 @@ urlpatterns = [
         name="empty-registration"),
     # Autocompletion
     url(r'^autocomplete/registration$', autocomplete),
-    url(r'^autocomplete/', include('autocomplete_light.urls')),
+    url(r'^user/autocomplete$', gestioncof_views.user_autocomplete,
+        name='cof-user-autocomplete'),
     # Interface admin
     url(r'^admin/logout/', gestioncof_views.logout),
     url(r'^admin/doc/', include('django.contrib.admindocs.urls')),
@@ -78,10 +80,11 @@ urlpatterns = [
         csv_views.admin_list_export,
         {'fields': ['username', ]}),
     url(r'^admin/', include(admin.site.urls)),
-    url(r'^grappelli/', include('grappelli.urls')),
     # Liens utiles du COF et du BdA
-    url(r'^utile_cof$', gestioncof_views.utile_cof),
-    url(r'^utile_bda$', gestioncof_views.utile_bda),
+    url(r'^utile_cof$', gestioncof_views.utile_cof,
+        name='utile_cof'),
+    url(r'^utile_bda$', gestioncof_views.utile_bda,
+        name='utile_bda'),
     url(r'^utile_bda/bda_diff$', gestioncof_views.liste_bdadiff),
     url(r'^utile_cof/diff_cof$', gestioncof_views.liste_diffcof),
     url(r'^utile_bda/bda_revente$', gestioncof_views.liste_bdarevente),
diff --git a/gestioncof/admin.py b/gestioncof/admin.py
index 0d7d7143..51969822 100644
--- a/gestioncof/admin.py
+++ b/gestioncof/admin.py
@@ -13,7 +13,7 @@ from django.core.urlresolvers import reverse
 from django.utils.safestring import mark_safe
 from django.db.models import Q
 
-import autocomplete_light
+from dal.autocomplete import ModelSelect2
 
 
 def add_link_field(target_model='', field='', link_text=str,
@@ -217,8 +217,16 @@ def user_str(self):
 User.__str__ = user_str
 
 
+class EventRegistrationAdminForm(forms.ModelForm):
+    class Meta:
+        widgets = {
+            'user': ModelSelect2(url='cof-user-autocomplete'),
+        }
+
+
 class EventRegistrationAdmin(admin.ModelAdmin):
-    form = autocomplete_light.modelform_factory(EventRegistration, exclude=[])
+    form = EventRegistrationAdminForm
+
     list_display = ('__str__', 'event', 'user', 'paid')
     list_filter = ('paid',)
     search_fields = ('user__username', 'user__first_name', 'user__last_name',
diff --git a/gestioncof/autocomplete_light_registry.py b/gestioncof/autocomplete_light_registry.py
deleted file mode 100644
index 4c62d995..00000000
--- a/gestioncof/autocomplete_light_registry.py
+++ /dev/null
@@ -1,10 +0,0 @@
-# -*- coding: utf-8 -*-
-
-import autocomplete_light
-
-from django.contrib.auth.models import User
-
-autocomplete_light.register(
-    User, search_fields=('username', 'first_name', 'last_name'),
-    attrs={'placeholder': 'membre...'}
-)
diff --git a/gestioncof/migrations/0001_initial.py b/gestioncof/migrations/0001_initial.py
index b942645d..c6bb6151 100644
--- a/gestioncof/migrations/0001_initial.py
+++ b/gestioncof/migrations/0001_initial.py
@@ -48,7 +48,7 @@ class Migration(migrations.Migration):
                 ('is_buro', models.BooleanField(default=False, verbose_name=b'Membre du Bur\xc3\xb4')),
                 ('petits_cours_accept', models.BooleanField(default=False, verbose_name=b'Recevoir des petits cours')),
                 ('petits_cours_remarques', models.TextField(default=b'', verbose_name='Remarques et pr\xe9cisions pour les petits cours', blank=True)),
-                ('user', models.OneToOneField(related_name='profile', to=settings.AUTH_USER_MODEL)),
+                ('user', models.OneToOneField(related_name='profile', to=settings.AUTH_USER_MODEL, on_delete=models.CASCADE)),
             ],
             options={
                 'verbose_name': 'Profil COF',
@@ -91,7 +91,7 @@ class Migration(migrations.Migration):
                 ('name', models.CharField(max_length=200, verbose_name=b'Champ')),
                 ('fieldtype', models.CharField(default=b'text', max_length=10, verbose_name=b'Type', choices=[(b'text', 'Texte long'), (b'char', 'Texte court')])),
                 ('default', models.TextField(verbose_name=b'Valeur par d\xc3\xa9faut', blank=True)),
-                ('event', models.ForeignKey(related_name='commentfields', to='gestioncof.Event')),
+                ('event', models.ForeignKey(related_name='commentfields', to='gestioncof.Event', on_delete=models.CASCADE)),
             ],
             options={
                 'verbose_name': 'Champ',
@@ -102,7 +102,7 @@ class Migration(migrations.Migration):
             fields=[
                 ('id', models.AutoField(verbose_name='ID', serialize=False, auto_created=True, primary_key=True)),
                 ('content', models.TextField(null=True, verbose_name=b'Contenu', blank=True)),
-                ('commentfield', models.ForeignKey(related_name='values', to='gestioncof.EventCommentField')),
+                ('commentfield', models.ForeignKey(related_name='values', to='gestioncof.EventCommentField', on_delete=models.CASCADE)),
             ],
         ),
         migrations.CreateModel(
@@ -111,7 +111,7 @@ class Migration(migrations.Migration):
                 ('id', models.AutoField(verbose_name='ID', serialize=False, auto_created=True, primary_key=True)),
                 ('name', models.CharField(max_length=200, verbose_name=b'Option')),
                 ('multi_choices', models.BooleanField(default=False, verbose_name=b'Choix multiples')),
-                ('event', models.ForeignKey(related_name='options', to='gestioncof.Event')),
+                ('event', models.ForeignKey(related_name='options', to='gestioncof.Event', on_delete=models.CASCADE)),
             ],
             options={
                 'verbose_name': 'Option',
@@ -122,7 +122,7 @@ class Migration(migrations.Migration):
             fields=[
                 ('id', models.AutoField(verbose_name='ID', serialize=False, auto_created=True, primary_key=True)),
                 ('value', models.CharField(max_length=200, verbose_name=b'Valeur')),
-                ('event_option', models.ForeignKey(related_name='choices', to='gestioncof.EventOption')),
+                ('event_option', models.ForeignKey(related_name='choices', to='gestioncof.EventOption', on_delete=models.CASCADE)),
             ],
             options={
                 'verbose_name': 'Choix',
@@ -133,10 +133,10 @@ class Migration(migrations.Migration):
             fields=[
                 ('id', models.AutoField(verbose_name='ID', serialize=False, auto_created=True, primary_key=True)),
                 ('paid', models.BooleanField(default=False, verbose_name=b'A pay\xc3\xa9')),
-                ('event', models.ForeignKey(to='gestioncof.Event')),
+                ('event', models.ForeignKey(to='gestioncof.Event', on_delete=models.CASCADE)),
                 ('filledcomments', models.ManyToManyField(to='gestioncof.EventCommentField', through='gestioncof.EventCommentValue')),
                 ('options', models.ManyToManyField(to='gestioncof.EventOptionChoice')),
-                ('user', models.ForeignKey(to=settings.AUTH_USER_MODEL)),
+                ('user', models.ForeignKey(to=settings.AUTH_USER_MODEL, on_delete=models.CASCADE)),
             ],
             options={
                 'verbose_name': 'Inscription',
@@ -240,7 +240,7 @@ class Migration(migrations.Migration):
                 ('id', models.AutoField(verbose_name='ID', serialize=False, auto_created=True, primary_key=True)),
                 ('question', models.CharField(max_length=200, verbose_name=b'Question')),
                 ('multi_answers', models.BooleanField(default=False, verbose_name=b'Choix multiples')),
-                ('survey', models.ForeignKey(related_name='questions', to='gestioncof.Survey')),
+                ('survey', models.ForeignKey(related_name='questions', to='gestioncof.Survey', on_delete=models.CASCADE)),
             ],
             options={
                 'verbose_name': 'Question',
@@ -251,7 +251,7 @@ class Migration(migrations.Migration):
             fields=[
                 ('id', models.AutoField(verbose_name='ID', serialize=False, auto_created=True, primary_key=True)),
                 ('answer', models.CharField(max_length=200, verbose_name=b'R\xc3\xa9ponse')),
-                ('survey_question', models.ForeignKey(related_name='answers', to='gestioncof.SurveyQuestion')),
+                ('survey_question', models.ForeignKey(related_name='answers', to='gestioncof.SurveyQuestion', on_delete=models.CASCADE)),
             ],
             options={
                 'verbose_name': 'R\xe9ponse',
@@ -265,12 +265,12 @@ class Migration(migrations.Migration):
         migrations.AddField(
             model_name='surveyanswer',
             name='survey',
-            field=models.ForeignKey(to='gestioncof.Survey'),
+            field=models.ForeignKey(to='gestioncof.Survey', on_delete=models.CASCADE),
         ),
         migrations.AddField(
             model_name='surveyanswer',
             name='user',
-            field=models.ForeignKey(to=settings.AUTH_USER_MODEL),
+            field=models.ForeignKey(to=settings.AUTH_USER_MODEL, on_delete=models.CASCADE),
         ),
         migrations.AddField(
             model_name='petitcoursdemande',
@@ -280,47 +280,47 @@ class Migration(migrations.Migration):
         migrations.AddField(
             model_name='petitcoursdemande',
             name='traitee_par',
-            field=models.ForeignKey(blank=True, to=settings.AUTH_USER_MODEL, null=True),
+            field=models.ForeignKey(blank=True, to=settings.AUTH_USER_MODEL, null=True, on_delete=models.CASCADE),
         ),
         migrations.AddField(
             model_name='petitcoursattributioncounter',
             name='matiere',
-            field=models.ForeignKey(verbose_name='Matiere', to='gestioncof.PetitCoursSubject'),
+            field=models.ForeignKey(verbose_name='Matiere', to='gestioncof.PetitCoursSubject', on_delete=models.CASCADE),
         ),
         migrations.AddField(
             model_name='petitcoursattributioncounter',
             name='user',
-            field=models.ForeignKey(to=settings.AUTH_USER_MODEL),
+            field=models.ForeignKey(to=settings.AUTH_USER_MODEL, on_delete=models.CASCADE),
         ),
         migrations.AddField(
             model_name='petitcoursattribution',
             name='demande',
-            field=models.ForeignKey(verbose_name='Demande', to='gestioncof.PetitCoursDemande'),
+            field=models.ForeignKey(verbose_name='Demande', to='gestioncof.PetitCoursDemande', on_delete=models.CASCADE),
         ),
         migrations.AddField(
             model_name='petitcoursattribution',
             name='matiere',
-            field=models.ForeignKey(verbose_name='Mati\xe8re', to='gestioncof.PetitCoursSubject'),
+            field=models.ForeignKey(verbose_name='Mati\xe8re', to='gestioncof.PetitCoursSubject', on_delete=models.CASCADE),
         ),
         migrations.AddField(
             model_name='petitcoursattribution',
             name='user',
-            field=models.ForeignKey(to=settings.AUTH_USER_MODEL),
+            field=models.ForeignKey(to=settings.AUTH_USER_MODEL, on_delete=models.CASCADE),
         ),
         migrations.AddField(
             model_name='petitcoursability',
             name='matiere',
-            field=models.ForeignKey(verbose_name='Mati\xe8re', to='gestioncof.PetitCoursSubject'),
+            field=models.ForeignKey(verbose_name='Mati\xe8re', to='gestioncof.PetitCoursSubject', on_delete=models.CASCADE),
         ),
         migrations.AddField(
             model_name='petitcoursability',
             name='user',
-            field=models.ForeignKey(to=settings.AUTH_USER_MODEL),
+            field=models.ForeignKey(to=settings.AUTH_USER_MODEL, on_delete=models.CASCADE),
         ),
         migrations.AddField(
             model_name='eventcommentvalue',
             name='registration',
-            field=models.ForeignKey(related_name='comments', to='gestioncof.EventRegistration'),
+            field=models.ForeignKey(related_name='comments', to='gestioncof.EventRegistration', on_delete=models.CASCADE),
         ),
         migrations.AlterUniqueTogether(
             name='surveyanswer',
diff --git a/gestioncof/migrations/0006_add_calendar.py b/gestioncof/migrations/0006_add_calendar.py
index 004d3602..27852f61 100644
--- a/gestioncof/migrations/0006_add_calendar.py
+++ b/gestioncof/migrations/0006_add_calendar.py
@@ -23,7 +23,8 @@ class Migration(migrations.Migration):
                 ('subscribe_to_events', models.BooleanField(default=True)),
                 ('subscribe_to_my_shows', models.BooleanField(default=True)),
                 ('other_shows', models.ManyToManyField(to='bda.Spectacle')),
-                ('user', models.OneToOneField(to=settings.AUTH_USER_MODEL)),
+                ('user', models.OneToOneField(to=settings.AUTH_USER_MODEL,
+                                              on_delete=models.CASCADE)),
             ],
         ),
         migrations.AlterModelOptions(
diff --git a/gestioncof/models.py b/gestioncof/models.py
index ea2cacc4..0d816155 100644
--- a/gestioncof/models.py
+++ b/gestioncof/models.py
@@ -49,7 +49,10 @@ class CofProfile(models.Model):
         (COTIZ_GRATIS, _("Gratuit")),
     )
 
-    user = models.OneToOneField(User, related_name="profile")
+    user = models.OneToOneField(
+        User, on_delete=models.CASCADE,
+        related_name="profile",
+    )
     login_clipper = models.CharField(
         "Login clipper", max_length=32, blank=True
     )
@@ -130,7 +133,10 @@ class Event(models.Model):
 
 
 class EventCommentField(models.Model):
-    event = models.ForeignKey(Event, related_name="commentfields")
+    event = models.ForeignKey(
+        Event, on_delete=models.CASCADE,
+        related_name="commentfields",
+    )
     name = models.CharField("Champ", max_length=200)
     fieldtype = models.CharField("Type", max_length=10,
                                  choices=TYPE_COMMENT_FIELD, default="text")
@@ -144,9 +150,14 @@ class EventCommentField(models.Model):
 
 
 class EventCommentValue(models.Model):
-    commentfield = models.ForeignKey(EventCommentField, related_name="values")
-    registration = models.ForeignKey("EventRegistration",
-                                     related_name="comments")
+    commentfield = models.ForeignKey(
+        EventCommentField, on_delete=models.CASCADE,
+        related_name="values",
+    )
+    registration = models.ForeignKey(
+        "EventRegistration", on_delete=models.CASCADE,
+        related_name="comments",
+    )
     content = models.TextField("Contenu", blank=True, null=True)
 
     def __str__(self):
@@ -154,7 +165,10 @@ class EventCommentValue(models.Model):
 
 
 class EventOption(models.Model):
-    event = models.ForeignKey(Event, related_name="options")
+    event = models.ForeignKey(
+        Event, on_delete=models.CASCADE,
+        related_name="options",
+    )
     name = models.CharField("Option", max_length=200)
     multi_choices = models.BooleanField("Choix multiples", default=False)
 
@@ -166,7 +180,10 @@ class EventOption(models.Model):
 
 
 class EventOptionChoice(models.Model):
-    event_option = models.ForeignKey(EventOption, related_name="choices")
+    event_option = models.ForeignKey(
+        EventOption, on_delete=models.CASCADE,
+        related_name="choices",
+    )
     value = models.CharField("Valeur", max_length=200)
 
     class Meta:
@@ -178,8 +195,8 @@ class EventOptionChoice(models.Model):
 
 
 class EventRegistration(models.Model):
-    user = models.ForeignKey(User)
-    event = models.ForeignKey(Event)
+    user = models.ForeignKey(User, on_delete=models.CASCADE)
+    event = models.ForeignKey(Event, on_delete=models.CASCADE)
     options = models.ManyToManyField(EventOptionChoice)
     filledcomments = models.ManyToManyField(EventCommentField,
                                             through=EventCommentValue)
@@ -207,7 +224,10 @@ class Survey(models.Model):
 
 
 class SurveyQuestion(models.Model):
-    survey = models.ForeignKey(Survey, related_name="questions")
+    survey = models.ForeignKey(
+        Survey, on_delete=models.CASCADE,
+        related_name="questions",
+    )
     question = models.CharField("Question", max_length=200)
     multi_answers = models.BooleanField("Choix multiples", default=False)
 
@@ -219,7 +239,10 @@ class SurveyQuestion(models.Model):
 
 
 class SurveyQuestionAnswer(models.Model):
-    survey_question = models.ForeignKey(SurveyQuestion, related_name="answers")
+    survey_question = models.ForeignKey(
+        SurveyQuestion, on_delete=models.CASCADE,
+        related_name="answers",
+    )
     answer = models.CharField("Réponse", max_length=200)
 
     class Meta:
@@ -230,8 +253,8 @@ class SurveyQuestionAnswer(models.Model):
 
 
 class SurveyAnswer(models.Model):
-    user = models.ForeignKey(User)
-    survey = models.ForeignKey(Survey)
+    user = models.ForeignKey(User, on_delete=models.CASCADE)
+    survey = models.ForeignKey(Survey, on_delete=models.CASCADE)
     answers = models.ManyToManyField(SurveyQuestionAnswer,
                                      related_name="selected_by")
 
@@ -247,7 +270,7 @@ class SurveyAnswer(models.Model):
 
 class CalendarSubscription(models.Model):
     token = models.UUIDField()
-    user = models.OneToOneField(User)
+    user = models.OneToOneField(User, on_delete=models.CASCADE)
     other_shows = models.ManyToManyField(Spectacle)
     subscribe_to_events = models.BooleanField(default=True)
     subscribe_to_my_shows = models.BooleanField(default=True)
diff --git a/gestioncof/petits_cours_models.py b/gestioncof/petits_cours_models.py
index d9ea9668..bf2cfde9 100644
--- a/gestioncof/petits_cours_models.py
+++ b/gestioncof/petits_cours_models.py
@@ -35,8 +35,11 @@ class PetitCoursSubject(models.Model):
 
 
 class PetitCoursAbility(models.Model):
-    user = models.ForeignKey(User)
-    matiere = models.ForeignKey(PetitCoursSubject, verbose_name=_("Matière"))
+    user = models.ForeignKey(User, on_delete=models.CASCADE)
+    matiere = models.ForeignKey(
+        PetitCoursSubject, on_delete=models.CASCADE,
+        verbose_name=_("Matière"),
+    )
     niveau = models.CharField(_("Niveau"),
                               choices=LEVELS_CHOICES,
                               max_length=choices_length(LEVELS_CHOICES))
@@ -84,7 +87,10 @@ class PetitCoursDemande(models.Model):
     remarques = models.TextField(_("Remarques et précisions"), blank=True)
 
     traitee = models.BooleanField(_("Traitée"), default=False)
-    traitee_par = models.ForeignKey(User, blank=True, null=True)
+    traitee_par = models.ForeignKey(
+        User, on_delete=models.CASCADE,
+        blank=True, null=True,
+    )
     processed = models.DateTimeField(_("Date de traitement"),
                                      blank=True, null=True)
     created = models.DateTimeField(_("Date de création"), auto_now_add=True)
@@ -126,9 +132,15 @@ class PetitCoursDemande(models.Model):
 
 
 class PetitCoursAttribution(models.Model):
-    user = models.ForeignKey(User)
-    demande = models.ForeignKey(PetitCoursDemande, verbose_name=_("Demande"))
-    matiere = models.ForeignKey(PetitCoursSubject, verbose_name=_("Matière"))
+    user = models.ForeignKey(User, on_delete=models.CASCADE)
+    demande = models.ForeignKey(
+        PetitCoursDemande, on_delete=models.CASCADE,
+        verbose_name=_("Demande"),
+    )
+    matiere = models.ForeignKey(
+        PetitCoursSubject, on_delete=models.CASCADE,
+        verbose_name=_("Matière"),
+    )
     date = models.DateTimeField(_("Date d'attribution"), auto_now_add=True)
     rank = models.IntegerField("Rang dans l'email")
     selected = models.BooleanField(_("Sélectionné par le demandeur"),
@@ -145,8 +157,11 @@ class PetitCoursAttribution(models.Model):
 
 
 class PetitCoursAttributionCounter(models.Model):
-    user = models.ForeignKey(User)
-    matiere = models.ForeignKey(PetitCoursSubject, verbose_name=_("Matiere"))
+    user = models.ForeignKey(User, on_delete=models.CASCADE)
+    matiere = models.ForeignKey(
+        PetitCoursSubject, on_delete=models.CASCADE,
+        verbose_name=_("Matiere"),
+    )
     count = models.IntegerField("Nombre d'envois", default=0)
 
     @classmethod
diff --git a/gestioncof/petits_cours_views.py b/gestioncof/petits_cours_views.py
index 087c9cef..52a29883 100644
--- a/gestioncof/petits_cours_views.py
+++ b/gestioncof/petits_cours_views.py
@@ -1,7 +1,6 @@
 # -*- coding: utf-8 -*-
 
 import json
-from datetime import datetime
 from custommail.shortcuts import render_custom_mail
 
 from django.shortcuts import render, get_object_or_404, redirect
@@ -13,6 +12,7 @@ from django.conf import settings
 from django.contrib.auth.decorators import login_required
 from django.contrib import messages
 from django.db import transaction
+from django.utils import timezone
 
 from gestioncof.models import CofProfile
 from gestioncof.petits_cours_models import (
@@ -287,7 +287,7 @@ def _traitement_post(request, demande):
                 attrib.save()
     demande.traitee = True
     demande.traitee_par = request.user
-    demande.processed = datetime.now()
+    demande.processed = timezone.now()
     demande.save()
     return render(request,
                   "gestioncof/traitement_demande_petit_cours_success.html",
diff --git a/gestioncof/templates/admin/base_site.html b/gestioncof/templates/admin/base_site.html
deleted file mode 100644
index 03fd0d17..00000000
--- a/gestioncof/templates/admin/base_site.html
+++ /dev/null
@@ -1,6 +0,0 @@
-{% extends "admin/base.html" %}
-
-{% block extrahead %}
-    <script src="https://ajax.googleapis.com/ajax/libs/jquery/1.7.2/jquery.min.js" type="text/javascript"></script>
-    {% include 'autocomplete_light/static.html' %}
-{% endblock %}
diff --git a/gestioncof/templates/admin/index.html b/gestioncof/templates/admin/index.html
deleted file mode 100644
index 965c71fa..00000000
--- a/gestioncof/templates/admin/index.html
+++ /dev/null
@@ -1,78 +0,0 @@
-{% extends "admin/base_site.html" %}
-
-<!-- LOADING -->
-{% load i18n grp_tags log %}
-
-<!-- JAVASCRIPTS -->
-{% block javascripts %}
-    {{ block.super }}
-{% endblock %}
-
-<!-- COLTYPE/BODYCLASS-- >
-{% block bodyclass %}dashboard{% endblock %}
-{% block content-class %}content-grid{% endblock %}
-
-<!-- BREADCRUMBS -->
-{% block breadcrumbs %}
-    <ul class="grp-horizontal-list">
-        <li>{% trans "Home" %}</li>
-    </ul>
-{% endblock %}
-{% block content_title %}
-    {% if title %}
-        <header><h1>{{ title }}</h1></header>
-    {% endif %}
-{% endblock %}
-
-<!-- CONTENT -->
-{% block content %}
-    <div class="g-d-c">
-        <div class="g-d-12 g-d-f">
-
-            {% for app in app_list %}
-                <div class="grp-module" id="app_{{ app.name|lower }}">
-                    <h2><a href="{{ app.app_url }}" class="grp-section">{% trans app.name %}</a></h2>
-                    {% for model in app.models %}
-                        <div class="grp-row">
-                            {% if model.perms.change %}<a href="{{ model.admin_url }}"><strong>{{ model.name }}</strong></a>{% else %}<span><strong>{{ model.name }}</strong></span>{% endif %}
-                            {% if model.perms.add or model.perms.change %}
-                                <ul class="grp-actions">
-                                    {% if model.perms.add %}<li class="grp-add-link"><a href="{{ model.admin_url }}add/">{% trans 'Add' %}</a></li>{% endif %}
-                                    {% if model.perms.change %}<li class="grp-change-link"><a href="{{ model.admin_url }}">{% trans 'Change' %}</a></li>{% endif %}
-                                </ul>
-                            {% endif %}
-                        </div>
-                    {% endfor %}
-                </div>
-            {% empty %}
-                <p>{% trans "You don´t have permission to edit anything." %}</p>
-            {% endfor %}
-        </div>
-        <div class="g-d-6 g-d-l">
-            <div class="grp-module" id="grp-recent-actions-module">
-                <h2>{% trans 'Recent Actions' %}</h2>
-                <div class="grp-module">
-                    <h3>{% trans 'My Actions' %}</h3>
-                    {% get_admin_log 20 as admin_log for_user user %}
-                    {% if not admin_log %}
-                        <p>{% trans 'None available' %}</p>
-                    {% else %}
-                        <ul class="grp-listing-small">
-                            {% for entry in admin_log %}
-                                <li class="grp-row{% if entry.is_addition %} grp-add-link{% endif %}{% if entry.is_change %} grp-change-link{% endif %}{% if entry.is_deletion %} grp-delete-link{% endif %}">
-                                    {% if entry.is_deletion %}
-                                        <span>{{ entry.object_repr }}</span>
-                                    {% else %}
-                                        <a href="{{ entry.get_admin_url }}">{{ entry.object_repr }}</a>
-                                    {% endif %}
-                                    <span class="grp-font-color-quiet">{% filter capfirst %}{% trans entry.content_type.name %}{% endfilter %}</span>
-                                </li>
-                            {% endfor %}
-                        </ul>
-                    {% endif %}
-                </div>
-            </div>
-        </div>
-    </div>
-{% endblock %}
-
diff --git a/gestioncof/templates/gestioncof/base_header.html b/gestioncof/templates/gestioncof/base_header.html
index 21441875..e5f757a7 100644
--- a/gestioncof/templates/gestioncof/base_header.html
+++ b/gestioncof/templates/gestioncof/base_header.html
@@ -3,7 +3,7 @@
 {% block content %}
 <header>
     <div class="container banner">
-        <a href="{% url "gestioncof.views.home" %}">
+        <a href="{% url "home" %}">
             <h1>GestioCOF</h1>
             {% block homelink %}
             <span class="glyphicon glyphicon-home" aria-hidden=true></span>
@@ -11,7 +11,7 @@
         </a>
         <div class="secondary">
             <span class="hidden-xxs">&nbsp;&nbsp;|&nbsp; </span>
-            <span><a href="{% url "gestioncof.views.logout" %}">Se déconnecter&nbsp;<span class="glyphicon glyphicon-log-out"></span></a></span>
+            <span><a href="{% url "cof-logout" %}">Se déconnecter&nbsp;<span class="glyphicon glyphicon-log-out"></span></a></span>
         </div>
         <h2 class="member-status">{% if user.first_name %}{{ user.first_name }}{% else %}<tt>{{ user.username }}</tt>{% endif %}, {% if user.profile.is_cof %}<tt class="user-is-cof">au COF{% else %}<tt class="user-is-not-cof">non-COF{% endif %}</tt></h2>
     </div><!-- /.container -->
diff --git a/gestioncof/templates/gestioncof/event.html b/gestioncof/templates/gestioncof/event.html
index 52f893db..f388bc25 100644
--- a/gestioncof/templates/gestioncof/event.html
+++ b/gestioncof/templates/gestioncof/event.html
@@ -5,7 +5,7 @@
                 {% if event.details %}
                 <p>{{ event.details }}</p>
                 {% endif %}
-                <form method="post" action="{% url 'gestioncof.views.event' event.id %}">
+                <form method="post" action="{% url 'event.details' event.id %}">
                 {% csrf_token %}
                 {{ form.as_p }}
                 <input type="submit" class="btn-submit" value="Enregistrer" />
diff --git a/gestioncof/templates/home.html b/gestioncof/templates/home.html
index acc04f30..65c4ba5e 100644
--- a/gestioncof/templates/home.html
+++ b/gestioncof/templates/home.html
@@ -14,7 +14,7 @@
             <div class="hm-block">
                 <ul>
                 {% for event in open_events %}
-                    <li><a href="{% url "gestioncof.views.event" event.id %}">{{ event.title }}</a></li>
+                    <li><a href="{% url "event.details" event.id %}">{{ event.title }}</a></li>
                 {% endfor %}
                 </ul>
             </div>
@@ -24,7 +24,7 @@
             <div class="hm-block">
                 <ul>
                 {% for survey in open_surveys %}
-                    <li><a href="{% url "gestioncof.views.survey" survey.id %}">{{ survey.title }}</a></li>
+                    <li><a href="{% url "survey.details" survey.id %}">{{ survey.title }}</a></li>
                 {% endfor %}
                 </ul>
             </div>
@@ -69,11 +69,11 @@
             <h3 class="block-title">Divers<span class="pull-right glyphicon glyphicon-question-sign"></span></h3>
             <div class="hm-block">
                 <ul>
-                    <li><a href="{% url "gestioncof.views.calendar" %}">Calendrier dynamique</a></li>
+                    <li><a href="{% url "calendar" %}">Calendrier dynamique</a></li>
                     {% if user.profile.is_cof %}<li><a href="{% url "petits-cours-inscription" %}">Inscription pour donner des petits cours</a></li>{% endif %}
                     
-                    <li><a href="{% url "gestioncof.views.profile" %}">Éditer mon profil</a></li>
-                    {% if not user.profile.login_clipper %}<li><a href="{% url "django.contrib.auth.views.password_change" %}">Changer mon mot de passe</a></li>{% endif %}
+                    <li><a href="{% url "profile" %}">Éditer mon profil</a></li>
+                    {% if not user.profile.login_clipper %}<li><a href="{% url "password_change" %}">Changer mon mot de passe</a></li>{% endif %}
                 </ul>
             </div>
             {% endif %}
@@ -86,16 +86,16 @@
                     <h4>Général</h4>
                     <li><a href="{% url "admin:index" %}">Administration générale</a></li>
                     <li><a href="{% url "petits-cours-demandes-list" %}">Demandes de petits cours</a></li>
-                    <li><a href="{% url "gestioncof.views.registration" %}">Inscription d'un nouveau membre</a></li>
+                    <li><a href="{% url "registration" %}">Inscription d'un nouveau membre</a></li>
                     <li><a href="{% url "liste-clubs" %}">Gestion des clubs</a></li>
                 </ul>
                 <ul>
                     <h4>Évènements & Sondages</h4>
                     {% for event in events %}
-                        <li><a href="{% url "gestioncof.views.event_status" event.id %}">Événement : {{ event.title }}</a></li>
+                        <li><a href="{% url "event.details.status" event.id %}">Événement : {{ event.title }}</a></li>
                     {% endfor %}
                     {% for survey in surveys %}
-                        <li><a href="{% url "gestioncof.views.survey_status" survey.id %}">Sondage : {{ survey.title }}</a></li>
+                        <li><a href="{% url "survey.details.status" survey.id %}">Sondage : {{ survey.title }}</a></li>
                     {% endfor %}
                     </ul>
             </div>
@@ -120,8 +120,8 @@
             <h3 class="block-title">Liens utiles<span class="pull-right glyphicon glyphicon-link"></span></h3>
             <div class="hm-block">
                 <ul>
-                    <li><a href="{% url "gestioncof.views.utile_cof" %}">Liens utiles du COF</a></li>
-                    <li><a href="{% url "gestioncof.views.utile_bda" %}">Liens utiles BdA</a></li>
+                    <li><a href="{% url "utile_cof" %}">Liens utiles du COF</a></li>
+                    <li><a href="{% url "utile_bda" %}">Liens utiles BdA</a></li>
                 </ul>
             </div>
         </div>
diff --git a/gestioncof/templates/login.html b/gestioncof/templates/login.html
index 1cd1d25d..bfc2dbb8 100644
--- a/gestioncof/templates/login.html
+++ b/gestioncof/templates/login.html
@@ -15,7 +15,7 @@
             <p class="error">Identifiants incorrects.</p>
             {% endif %} 
             <form class="form-horizontal" method="post"
-                action="{% url 'gestioncof.views.login_ext' %}?next={{ next|urlencode }}">
+                action="{% url 'ext_login_view' %}?next={{ next|urlencode }}">
             {% csrf_token %}
             <div class="form-group">
                 <input class="form-control" id="id_username" maxlength="254" name="username" type="text" placeholder="Nom d'utilisateur">
diff --git a/gestioncof/templates/login_switch.html b/gestioncof/templates/login_switch.html
index aa8a68c6..d361493b 100644
--- a/gestioncof/templates/login_switch.html
+++ b/gestioncof/templates/login_switch.html
@@ -12,13 +12,13 @@
         <div class="container-fluid">
         <div class="row" style="margin:0;">
             <a aria-label="Compte clipper"
-                    href="{% url 'django_cas_ng.views.login' %}?next={{ next|urlencode }}">
+                    href="{% url 'cas_login_view' %}?next={{ next|urlencode }}">
                 <div class="col-xs-12 col-sm-6" id="login_clipper">
                     Compte clipper
                 </div>
             </a>
             <a  aria-label="Extérieur" 
-                    href="{% url 'gestioncof.views.login_ext' %}?next={{ next|urlencode }}">
+                    href="{% url 'ext_login_view' %}?next={{ next|urlencode }}">
                 <div class="col-xs-12 col-sm-6" id="login_outsider">
                     Extérieur
                 </div>
diff --git a/gestioncof/templates/registration/password_change_done.html b/gestioncof/templates/registration/password_change_done.html
index f83a781b..9f2c4a60 100644
--- a/gestioncof/templates/registration/password_change_done.html
+++ b/gestioncof/templates/registration/password_change_done.html
@@ -5,5 +5,5 @@
 
 {% block realcontent %}
                 <h2>Mot de passe modifié avec succès !</h2>
-		        <h3><a href="{% url "gestioncof.views.home" %}">Retour au menu principal</a></h3>
+		        <h3><a href="{% url "home" %}">Retour au menu principal</a></h3>
 {% endblock %}
diff --git a/gestioncof/templates/registration/password_change_form.html b/gestioncof/templates/registration/password_change_form.html
index f579fb31..d9a3f66a 100644
--- a/gestioncof/templates/registration/password_change_form.html
+++ b/gestioncof/templates/registration/password_change_form.html
@@ -5,7 +5,7 @@
 
 {% block realcontent %}
                 <h2>Changement de mot de passe</h2>
-                <form class="form-horizontal" method="post" action="{% url 'django.contrib.auth.views.password_change' %}">
+                <form class="form-horizontal" method="post" action="{% url 'password_change' %}">
                 {% csrf_token %}
                 {{ form | bootstrap }}
                 <input type="submit" class="btn btn-primary pull-right" value="Changer" />
diff --git a/gestioncof/urls.py b/gestioncof/urls.py
index 57c2e8f2..2be609b3 100644
--- a/gestioncof/urls.py
+++ b/gestioncof/urls.py
@@ -36,19 +36,23 @@ petitcours_patterns = [
 ]
 
 surveys_patterns = [
-    url(r'^(?P<survey_id>\d+)/status$', views.survey_status),
-    url(r'^(?P<survey_id>\d+)$', views.survey),
+    url(r'^(?P<survey_id>\d+)/status$', views.survey_status,
+        name='survey.details.status'),
+    url(r'^(?P<survey_id>\d+)$', views.survey,
+        name='survey.details'),
 ]
 
 events_patterns = [
-    url(r'^(?P<event_id>\d+)$', views.event),
-    url(r'^(?P<event_id>\d+)/status$', views.event_status),
+    url(r'^(?P<event_id>\d+)$', views.event,
+        name='event.details'),
+    url(r'^(?P<event_id>\d+)/status$', views.event_status,
+        name='event.details.status'),
 ]
 
 calendar_patterns = [
-    url(r'^subscription$', 'gestioncof.views.calendar'),
-    url(r'^(?P<token>[a-z0-9-]+)/calendar.ics$',
-        'gestioncof.views.calendar_ics')
+    url(r'^subscription$', views.calendar,
+        name='calendar'),
+    url(r'^(?P<token>[a-z0-9-]+)/calendar.ics$', views.calendar_ics)
 ]
 
 clubs_patterns = [
diff --git a/gestioncof/views.py b/gestioncof/views.py
index ec9f6efd..5dfee83f 100644
--- a/gestioncof/views.py
+++ b/gestioncof/views.py
@@ -20,6 +20,8 @@ from django.contrib import messages
 
 from django_cas_ng.views import logout as cas_logout_view
 
+from utils.views.autocomplete import Select2QuerySetView
+
 from gestioncof.models import Survey, SurveyAnswer, SurveyQuestion, \
     SurveyQuestionAnswer
 from gestioncof.models import Event, EventRegistration, EventOption, \
@@ -54,8 +56,8 @@ def home(request):
 
 
 def login(request):
-    if request.user.is_authenticated():
-        return redirect("gestioncof.views.home")
+    if request.user.is_authenticated:
+        return redirect("home")
     context = {}
     if request.method == "GET" and 'next' in request.GET:
         context['next'] = request.GET['next']
@@ -786,3 +788,18 @@ class ConfigUpdate(FormView):
     def form_valid(self, form):
         form.save()
         return super().form_valid(form)
+
+
+##
+# Autocomplete views
+#
+# https://django-autocomplete-light.readthedocs.io/en/master/tutorial.html#create-an-autocomplete-view
+##
+
+
+class UserAutocomplete(Select2QuerySetView):
+    model = User
+    search_fields = ('username', 'first_name', 'last_name')
+
+
+user_autocomplete = buro_required(UserAutocomplete.as_view())
diff --git a/kfet/auth/middleware.py b/kfet/auth/middleware.py
index 748ce4dd..48d9c4ee 100644
--- a/kfet/auth/middleware.py
+++ b/kfet/auth/middleware.py
@@ -13,8 +13,11 @@ class TemporaryAuthMiddleware:
     values from CofProfile and Account of this user.
 
     """
-    def process_request(self, request):
-        if request.user.is_authenticated():
+    def __init__(self, get_response):
+        self.get_response = get_response
+
+    def __call__(self, request):
+        if request.user.is_authenticated:
             # avoid multiple db accesses in views and templates
             request.user = (
                 User.objects
@@ -31,6 +34,8 @@ class TemporaryAuthMiddleware:
             request.real_user = request.user
             request.user = temp_request_user
 
+        return self.get_response(request)
+
     def get_kfet_password(self, request):
         return (
             request.META.get('HTTP_KFETPASSWORD') or
diff --git a/kfet/auth/tests.py b/kfet/auth/tests.py
index c2f183cd..0c8b25d3 100644
--- a/kfet/auth/tests.py
+++ b/kfet/auth/tests.py
@@ -286,6 +286,8 @@ class TemporaryAuthTests(TestCase):
 
         self.factory = RequestFactory()
 
+        self.middleware = TemporaryAuthMiddleware(mock.Mock())
+
         user1_acc = Account(trigramme='000')
         user1_acc.change_pwd('kfet_user1')
         user1_acc.save({'username': 'user1'})
@@ -312,7 +314,7 @@ class TemporaryAuthTests(TestCase):
         request = self.factory.get('/', HTTP_KFETPASSWORD='kfet_user2')
         request.user = self.user1
 
-        TemporaryAuthMiddleware().process_request(request)
+        self.middleware(request)
 
         self.assertEqual(request.user, self.user2)
         self.assertEqual(request.real_user, self.user1)
@@ -325,7 +327,7 @@ class TemporaryAuthTests(TestCase):
         request = self.factory.post('/', {'KFETPASSWORD': 'kfet_user2'})
         request.user = self.user1
 
-        TemporaryAuthMiddleware().process_request(request)
+        self.middleware(request)
 
         self.assertEqual(request.user, self.user2)
         self.assertEqual(request.real_user, self.user1)
@@ -337,7 +339,7 @@ class TemporaryAuthTests(TestCase):
         request = self.factory.post('/', {'KFETPASSWORD': 'invalid'})
         request.user = self.user1
 
-        TemporaryAuthMiddleware().process_request(request)
+        self.middleware(request)
 
         self.assertEqual(request.user, self.user1)
         self.assertFalse(hasattr(request, 'real_user'))
diff --git a/kfet/cms/migrations/0001_initial.py b/kfet/cms/migrations/0001_initial.py
index 951637c7..ed0b0948 100644
--- a/kfet/cms/migrations/0001_initial.py
+++ b/kfet/cms/migrations/0001_initial.py
@@ -20,7 +20,7 @@ class Migration(migrations.Migration):
         migrations.CreateModel(
             name='KFetPage',
             fields=[
-                ('page_ptr', models.OneToOneField(serialize=False, primary_key=True, parent_link=True, auto_created=True, to='wagtailcore.Page')),
+                ('page_ptr', models.OneToOneField(serialize=False, primary_key=True, parent_link=True, auto_created=True, to='wagtailcore.Page', on_delete=models.CASCADE)),
                 ('no_header', models.BooleanField(verbose_name='Sans en-tête', help_text="Coché, l'en-tête (avec le titre) de la page n'est pas affiché.", default=False)),
                 ('content', wagtail.wagtailcore.fields.StreamField((('rich', wagtail.wagtailcore.blocks.RichTextBlock(label='Éditeur')), ('carte', kfet.cms.models.MenuBlock()), ('group_team', wagtail.wagtailcore.blocks.StructBlock((('show_only', wagtail.wagtailcore.blocks.IntegerBlock(help_text='Nombre initial de membres affichés. Laisser vide pour tou-te-s les afficher.', required=False, label='Montrer seulement')), ('members', wagtail.wagtailcore.blocks.ListBlock(wagtail.wagtailsnippets.blocks.SnippetChooserBlock(kfet.cms.models.MemberTeam), classname='team-group', label='K-Fêt-eux-ses'))))), ('group', wagtail.wagtailcore.blocks.StreamBlock((('rich', wagtail.wagtailcore.blocks.RichTextBlock(label='Éditeur')), ('carte', kfet.cms.models.MenuBlock()), ('group_team', wagtail.wagtailcore.blocks.StructBlock((('show_only', wagtail.wagtailcore.blocks.IntegerBlock(help_text='Nombre initial de membres affichés. Laisser vide pour tou-te-s les afficher.', required=False, label='Montrer seulement')), ('members', wagtail.wagtailcore.blocks.ListBlock(wagtail.wagtailsnippets.blocks.SnippetChooserBlock(kfet.cms.models.MemberTeam), classname='team-group', label='K-Fêt-eux-ses')))))), label='Contenu groupé'))), verbose_name='Contenu')),
                 ('layout', models.CharField(max_length=255, choices=[('kfet/base_col_1.html', 'Une colonne : centrée sur la page'), ('kfet/base_col_2.html', 'Deux colonnes : fixe à gauche, contenu à droite'), ('kfet/base_col_mult.html', 'Contenu scindé sur plusieurs colonnes')], help_text='Comment cette page devrait être affichée ?', verbose_name='Template', default='kfet/base_col_mult.html')),
diff --git a/kfet/models.py b/kfet/models.py
index b1e351d5..deee76eb 100644
--- a/kfet/models.py
+++ b/kfet/models.py
@@ -1,10 +1,10 @@
 # -*- coding: utf-8 -*-
 
 from django.db import models
-from django.core.urlresolvers import reverse
 from django.core.validators import RegexValidator
 from django.contrib.auth.models import User
 from gestioncof.models import CofProfile
+from django.urls import reverse
 from django.utils.six.moves import reduce
 from django.utils import timezone
 from django.utils.encoding import python_2_unicode_compatible
diff --git a/kfet/templates/kfet/base_nav.html b/kfet/templates/kfet/base_nav.html
index dda6c1ef..f4c07e05 100644
--- a/kfet/templates/kfet/base_nav.html
+++ b/kfet/templates/kfet/base_nav.html
@@ -1,10 +1,12 @@
 {% load i18n static %}
 {% load wagtailcore_tags %}
 
+{% slugurl "kfet" as kfet_home_url %}
+
 <nav class="navbar navbar-fixed-top">
   <div class="container-fluid">
     <div class="navbar-header">
-      <a class="navbar-brand" href="{% slugurl "k-fet" %}">
+      <a class="navbar-brand" href="{{ kfet_home_url }}">
         <img src="{% static 'kfet/img/logo3.png' %}">
       </a>
     </div>
@@ -99,7 +101,7 @@
           {% endif %}
           <li class="divider"></li>
           <li>
-            <a href="{% url "cof-logout" %}?next={% slugurl "k-fet" %}">
+            <a href="{% url "cof-logout" %}?next={{ kfet_home_url|urlencode }}">
               <span class="glyphicon glyphicon-log-out"></span><span>Déconnexion</span>
             </a>
           </li>
@@ -108,13 +110,13 @@
       {% endif %}
       {% if user.is_authenticated and not perms.kfet.is_team %}
       <li>
-	      <a href="{% url "cof-logout" %}?next={% slugurl "k-fet" %}" title="Déconnexion">
+        <a href="{% url "cof-logout" %}?next={{ kfet_home_url|urlencode }}" title="Déconnexion">
           <span class="glyphicon glyphicon-log-out"></span>
         </a>
       </li>
       {% elif not user.is_authenticated %}
       <li>
-        <a href="{% url "cof-login" %}?next={{ request.path }}" title="Connexion">
+        <a href="{% url "cof-login" %}?next={{ request.path|urlencode }}" title="Connexion">
           <span>Connexion</span><!--
           --><span class="glyphicon glyphicon-log-in"></span>
         </a>
diff --git a/kfet/tests/test_views.py b/kfet/tests/test_views.py
index c7ed5dda..41ed8b5c 100644
--- a/kfet/tests/test_views.py
+++ b/kfet/tests/test_views.py
@@ -452,7 +452,7 @@ class AccountGroupUpdateViewTests(ViewTestCaseMixin, TestCase):
             'kfet.manage_perms',
         )
         self.group = Group.objects.create(name='K-Fêt - Group')
-        self.group.permissions = self.perms.values()
+        self.group.permissions.set(self.perms.values())
 
     def test_get_ok(self):
         r = self.client.get(self.url)
diff --git a/kfet/tests/testcases.py b/kfet/tests/testcases.py
index d7d7eac5..3ea428c3 100644
--- a/kfet/tests/testcases.py
+++ b/kfet/tests/testcases.py
@@ -57,7 +57,7 @@ class TestCaseMixin:
                     'path': request.get_full_path(),
                     'username': (
                         "'{}'".format(request.user)
-                        if request.user.is_authenticated()
+                        if request.user.is_authenticated
                         else 'anonymous'
                     ),
                     'code': response.status_code,
@@ -96,7 +96,7 @@ class TestCaseMixin:
                     'path': request.get_full_path(),
                     'username': (
                         "'%s'" % request.user
-                        if request.user.is_authenticated()
+                        if request.user.is_authenticated
                         else 'anonymous'
                     ),
                     'form_ctx': form_ctx,
diff --git a/kfet/tests/utils.py b/kfet/tests/utils.py
index 30eb05ad..f3222e14 100644
--- a/kfet/tests/utils.py
+++ b/kfet/tests/utils.py
@@ -184,5 +184,5 @@ def user_add_perms(user, perms_labels):
 
     # If permissions have already been fetched for this user, we need to reload
     # it to avoid using of the previous permissions cache.
-    # https://docs.djangoproject.com/en/1.11/topics/auth/default/#permission-caching
+    # https://docs.djangoproject.com/en/dev/topics/auth/default/#permission-caching
     return User.objects.get(pk=user.pk)
diff --git a/kfet/views.py b/kfet/views.py
index f1dd6834..1fe9ac22 100644
--- a/kfet/views.py
+++ b/kfet/views.py
@@ -861,30 +861,34 @@ def account_read_json(request):
         'trigramme': account.trigramme }
     return JsonResponse(data)
 
+
 @teamkfet_required
 def kpsul_checkout_data(request):
     pk = request.POST.get('pk', 0)
     if not pk:
         pk = 0
-    data = (Checkout.objects
+
+    data = (
+        Checkout.objects
         .annotate(
             last_statement_by_first_name=F('statements__by__cofprofile__user__first_name'),
             last_statement_by_last_name=F('statements__by__cofprofile__user__last_name'),
             last_statement_by_trigramme=F('statements__by__trigramme'),
             last_statement_balance=F('statements__balance_new'),
             last_statement_at=F('statements__at'))
-        .values(
-            'id', 'name', 'balance', 'valid_from', 'valid_to',
-            'last_statement_balance', 'last_statement_at',
-            'last_statement_by_trigramme', 'last_statement_by_last_name',
-            'last_statement_by_first_name')
         .select_related(
             'statements'
             'statements__by',
             'statements__by__cofprofile__user')
         .filter(pk=pk)
         .order_by('statements__at')
-        .last())
+        .values(
+            'id', 'name', 'balance', 'valid_from', 'valid_to',
+            'last_statement_balance', 'last_statement_at',
+            'last_statement_by_trigramme', 'last_statement_by_last_name',
+            'last_statement_by_first_name')
+        .last()
+    )
     if data is None:
         raise Http404
     return JsonResponse(data)
@@ -1312,13 +1316,13 @@ def history_json(request):
 
     # Construction de la requête (sur les opérations) pour le prefetch
     queryset_prefetch = Operation.objects.select_related(
-            'canceled_by__trigramme', 'addcost_for__trigramme',
-            'article__name')
+        'article', 'canceled_by', 'addcost_for')
 
     # Construction de la requête principale
-    opegroups = (OperationGroup.objects
-        .prefetch_related(Prefetch('opes', queryset = queryset_prefetch))
-        .select_related('on_acc__trigramme', 'valid_by__trigramme')
+    opegroups = (
+        OperationGroup.objects
+        .prefetch_related(Prefetch('opes', queryset=queryset_prefetch))
+        .select_related('on_acc', 'valid_by')
         .order_by('at')
     )
     # Application des filtres
diff --git a/requirements-devel.txt b/requirements-devel.txt
index de272491..83053f76 100644
--- a/requirements-devel.txt
+++ b/requirements-devel.txt
@@ -1,4 +1,4 @@
 -r requirements.txt
--e git://github.com/jazzband/django-debug-toolbar.git@88ddc7bdf39c7ff660eac054eab225ac22926754#egg=django-debug-toolbar
+django-debug-toolbar
 django-debug-panel
 ipython
diff --git a/requirements.txt b/requirements.txt
index 1591656d..d1046042 100644
--- a/requirements.txt
+++ b/requirements.txt
@@ -1,17 +1,16 @@
 configparser==3.5.0
-Django==1.8.*
-django-autocomplete-light==2.3.3
+Django==1.11.*
+django-autocomplete-light==3.1.3
 django-autoslug==1.9.3
 django-cas-ng==3.5.7
 django-djconfig==0.5.3
-django-grappelli==2.8.1
-django-recaptcha==1.0.5
+django-recaptcha==1.2.1
 django-redis-cache==1.7.1
+icalendar
 psycopg2
-Pillow==3.3.0
-six==1.10.0
-unicodecsv==0.14.1
-icalendar==3.10
+Pillow
+six
+unicodecsv
 django-bootstrap-form==3.2.1
 asgiref==1.1.1
 daphne==1.3.0
@@ -26,8 +25,5 @@ python-dateutil
 wagtail==1.10.*
 wagtailmenus==2.2.*
 
-# Remove this when we switch to Django 1.11
-djangorestframework==3.6.4
-
 # Production tools
 wheel
diff --git a/utils/__init__.py b/utils/__init__.py
new file mode 100644
index 00000000..e69de29b
diff --git a/utils/views/__init__.py b/utils/views/__init__.py
new file mode 100644
index 00000000..e69de29b
diff --git a/utils/views/autocomplete.py b/utils/views/autocomplete.py
new file mode 100644
index 00000000..ca50c63b
--- /dev/null
+++ b/utils/views/autocomplete.py
@@ -0,0 +1,26 @@
+from django.db.models import Q
+
+from dal import autocomplete
+
+
+class Select2QuerySetView(autocomplete.Select2QuerySetView):
+    model = None
+    search_fields = []
+
+    def get_queryset_filter(self):
+        q = self.q
+        filter_q = Q()
+
+        if not q:
+            return filter_q
+
+        words = q.split()
+
+        for word in words:
+            for field in self.search_fields:
+                filter_q |= Q(**{'{}__icontains'.format(field): word})
+
+        return filter_q
+
+    def get_queryset(self):
+        return self.model.objects.filter(self.get_queryset_filter())

From 241c77e3b46a3b69ad106600132405b33bb9b533 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Aur=C3=A9lien=20Delobelle?= <aurelien.delobelle@gmail.com>
Date: Fri, 24 Nov 2017 06:53:31 +0100
Subject: [PATCH 054/101] =?UTF-8?q?bda=20--=20Set=20winner's=20email=20as?=
 =?UTF-8?q?=20Reply-to=20of=20the=20email=E2=80=A6?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

…sent to the seller when a resale has been assigned.

Fixes #179.
---
 bda/models.py                         |  59 ++++++++++-----
 bda/tests/__init__.py                 |   0
 bda/tests/test_models.py              | 100 ++++++++++++++++++++++++++
 bda/{tests.py => tests/test_views.py} |   2 +-
 4 files changed, 141 insertions(+), 20 deletions(-)
 create mode 100644 bda/tests/__init__.py
 create mode 100644 bda/tests/test_models.py
 rename bda/{tests.py => tests/test_views.py} (98%)

diff --git a/bda/models.py b/bda/models.py
index 41462d70..ca6aece4 100644
--- a/bda/models.py
+++ b/bda/models.py
@@ -6,12 +6,15 @@ from datetime import timedelta
 from custommail.shortcuts import send_mass_custom_mail
 
 from django.contrib.sites.models import Site
+from django.core import mail
 from django.db import models
 from django.db.models import Count
 from django.contrib.auth.models import User
 from django.conf import settings
 from django.utils import timezone, formats
 
+from custommail.models import CustomMail
+
 
 def get_generic_user():
     generic, _ = User.objects.get_or_create(
@@ -312,37 +315,55 @@ class SpectacleRevente(models.Model):
             # Envoie un mail au gagnant et au vendeur
             winner = random.choice(inscrits)
             self.soldTo = winner
-            datatuple = []
+
+            mails = []
+
             context = {
                 'acheteur': winner.user,
                 'vendeur': seller.user,
                 'show': spectacle,
             }
-            datatuple.append((
-                'bda-revente-winner',
-                context,
-                settings.MAIL_DATA['revente']['FROM'],
-                [winner.user.email],
-            ))
-            datatuple.append((
+
+            c_mails_qs = CustomMail.objects.filter(shortname__in=[
+                'bda-revente-winner', 'bda-revente-loser',
                 'bda-revente-seller',
-                context,
-                settings.MAIL_DATA['revente']['FROM'],
-                [seller.user.email]
-            ))
+            ])
+
+            c_mails = {cm.shortname: cm for cm in c_mails_qs}
+
+            mails.append(
+                c_mails['bda-revente-winner'].get_message(
+                    context,
+                    from_email=settings.MAIL_DATA['revente']['FROM'],
+                    to=[winner.user.email],
+                )
+            )
+
+            mails.append(
+                c_mails['bda-revente-seller'].get_message(
+                    context,
+                    from_email=settings.MAIL_DATA['revente']['FROM'],
+                    to=[seller.user.email],
+                    reply_to=[winner.user.email],
+                )
+            )
 
             # Envoie un mail aux perdants
             for inscrit in inscrits:
                 if inscrit != winner:
                     new_context = dict(context)
                     new_context['acheteur'] = inscrit.user
-                    datatuple.append((
-                        'bda-revente-loser',
-                        new_context,
-                        settings.MAIL_DATA['revente']['FROM'],
-                        [inscrit.user.email]
-                    ))
-            send_mass_custom_mail(datatuple)
+
+                    mails.append(
+                        c_mails['bda-revente-loser'].get_message(
+                            new_context,
+                            from_email=settings.MAIL_DATA['revente']['FROM'],
+                            to=[inscrit.user.email],
+                        )
+                    )
+
+            mail_conn = mail.get_connection()
+            mail_conn.send_messages(mails)
         # Si personne ne veut de la place, elle part au shotgun
         else:
             self.shotgun = True
diff --git a/bda/tests/__init__.py b/bda/tests/__init__.py
new file mode 100644
index 00000000..e69de29b
diff --git a/bda/tests/test_models.py b/bda/tests/test_models.py
new file mode 100644
index 00000000..d9242b3f
--- /dev/null
+++ b/bda/tests/test_models.py
@@ -0,0 +1,100 @@
+from datetime import timedelta
+from unittest import mock
+
+from django.contrib.auth import get_user_model
+from django.core import mail
+from django.test import TestCase
+from django.utils import timezone
+
+from bda.models import (
+    Attribution, Participant, Salle, Spectacle, SpectacleRevente, Tirage,
+)
+
+User = get_user_model()
+
+
+class SpectacleReventeTests(TestCase):
+    fixtures = ['gestioncof/management/data/custommail.json']
+
+    def setUp(self):
+        now = timezone.now()
+
+        self.t = Tirage.objects.create(
+            title='Tirage',
+            ouverture=now - timedelta(days=7),
+            fermeture=now - timedelta(days=3),
+            active=True,
+        )
+        self.s = Spectacle.objects.create(
+            title='Spectacle',
+            date=now + timedelta(days=20),
+            location=Salle.objects.create(name='Salle', address='Address'),
+            price=10.5,
+            slots=5,
+            tirage=self.t,
+            listing=False,
+        )
+
+        self.seller = Participant.objects.create(
+            user=User.objects.create(
+                username='seller', email='seller@mail.net'),
+            tirage=self.t,
+        )
+        self.p1 = Participant.objects.create(
+            user=User.objects.create(username='part1', email='part1@mail.net'),
+            tirage=self.t,
+        )
+        self.p2 = Participant.objects.create(
+            user=User.objects.create(username='part2', email='part2@mail.net'),
+            tirage=self.t,
+        )
+        self.p3 = Participant.objects.create(
+            user=User.objects.create(username='part3', email='part3@mail.net'),
+            tirage=self.t,
+        )
+
+        self.attr = Attribution.objects.create(
+            participant=self.seller,
+            spectacle=self.s,
+        )
+
+        self.rev = SpectacleRevente.objects.create(
+            attribution=self.attr,
+            seller=self.seller,
+        )
+
+    def test_tirage(self):
+        revente = self.rev
+
+        wanted_by = [self.p1, self.p2, self.p3]
+        revente.answered_mail = wanted_by
+
+        with mock.patch('bda.models.random.choice') as mc:
+            # Set winner to self.p1.
+            mc.return_value = self.p1
+
+            revente.tirage()
+
+            # Call to random.choice used participants in wanted_by.
+            mc_args, _ = mc.call_args
+
+            self.assertEqual(set(mc_args[0]), set(wanted_by))
+
+        self.assertEqual(revente.soldTo, self.p1)
+        self.assertTrue(revente.tirage_done)
+
+        mails = {m.to[0]: m for m in mail.outbox}
+
+        self.assertEqual(len(mails), 4)
+
+        m_seller = mails['seller@mail.net']
+        self.assertListEqual(m_seller.to, ['seller@mail.net'])
+        self.assertListEqual(m_seller.reply_to, ['part1@mail.net'])
+
+        m_winner = mails['part1@mail.net']
+        self.assertListEqual(m_winner.to, ['part1@mail.net'])
+
+        self.assertCountEqual(
+            [mails['part2@mail.net'].to, mails['part3@mail.net'].to],
+            [['part2@mail.net'], ['part3@mail.net']],
+        )
diff --git a/bda/tests.py b/bda/tests/test_views.py
similarity index 98%
rename from bda/tests.py
rename to bda/tests/test_views.py
index 97a220c9..88dfd980 100644
--- a/bda/tests.py
+++ b/bda/tests/test_views.py
@@ -4,7 +4,7 @@ from django.contrib.auth.models import User
 from django.test import TestCase, Client
 from django.utils import timezone
 
-from .models import Tirage, Spectacle, Salle, CategorieSpectacle
+from bda.models import Tirage, Spectacle, Salle, CategorieSpectacle
 
 
 class TestBdAViews(TestCase):

From 32720c56a6e88315a7cf4a2481ef1fd74e391f98 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Aur=C3=A9lien=20Delobelle?= <aurelien.delobelle@gmail.com>
Date: Mon, 27 Nov 2017 18:24:22 +0100
Subject: [PATCH 055/101] kfet -- Tables are sortable

Many tables in kfet app templates become sortable:
account list, negative account list, article list, article inventory
list, article supplier list, article category list, checkout list,
checkout statement list, inventory list, inventory details, order list,
order creation, order details.

This is achieved thanks to the jQuery plugin 'tablesorter':
https://mottie.github.io/tablesorter/docs/

- Affected tables also got sticky headers (it stays visible on scroll).
- Dates format are modified in order to ease the date sorting with the
plugin (it avoids writing a custom parser, or an extractor from
additional hidden element in the table cells).
- Tables whose content is classified by category (of articles) now uses
several tbodies. This has minor effects on the tables style.
- Tags of the header help signs become 'i', instead of 'span', in order
to avoid weird spacing.
---
 kfet/static/kfet/css/base/misc.css            |    4 +
 kfet/static/kfet/css/index.css                |   11 +
 .../kfet/css/libs/jquery-tablesorter-kfet.css |    0
 kfet/static/kfet/js/kfet.js                   |   74 +
 .../jquery.tablesorter.combined.js            | 6014 +++++++++++++++++
 kfet/templates/kfet/account.html              |    7 +-
 kfet/templates/kfet/account_negative.html     |   17 +-
 kfet/templates/kfet/article.html              |   62 +-
 .../kfet/article_inventories_snippet.html     |   11 +-
 .../kfet/article_suppliers_snippet.html       |   11 +-
 kfet/templates/kfet/base.html                 |    1 +
 kfet/templates/kfet/category.html             |    7 +-
 kfet/templates/kfet/checkout.html             |   17 +-
 kfet/templates/kfet/checkout_read.html        |   11 +-
 kfet/templates/kfet/inventory.html            |   11 +-
 kfet/templates/kfet/inventory_read.html       |   44 +-
 kfet/templates/kfet/order.html                |   13 +-
 kfet/templates/kfet/order_create.html         |  105 +-
 kfet/templates/kfet/order_read.html           |   58 +-
 kfet/views.py                                 |    2 +-
 20 files changed, 6331 insertions(+), 149 deletions(-)
 create mode 100644 kfet/static/kfet/css/libs/jquery-tablesorter-kfet.css
 create mode 100644 kfet/static/kfet/vendor/jquery-tablesorter/jquery.tablesorter.combined.js

diff --git a/kfet/static/kfet/css/base/misc.css b/kfet/static/kfet/css/base/misc.css
index 680fb1ee..fab1a33a 100644
--- a/kfet/static/kfet/css/base/misc.css
+++ b/kfet/static/kfet/css/base/misc.css
@@ -75,6 +75,10 @@ ul {
     padding:8px !important;
 }
 
+.table thead .sm-padding {
+    padding:3px !important;
+}
+
 .table tr.section {
     background: #c63b52 !important;
     color:#fff;
diff --git a/kfet/static/kfet/css/index.css b/kfet/static/kfet/css/index.css
index 8e28cce0..fdb86aff 100644
--- a/kfet/static/kfet/css/index.css
+++ b/kfet/static/kfet/css/index.css
@@ -3,6 +3,7 @@
 
 /* Libs customizations */
 @import url("libs/jconfirm-kfet.css");
+@import url("libs/jquery-tablesorter-kfet.css");
 @import url("libs/multiple-select-kfet.css");
 
 /* Base */
@@ -54,6 +55,11 @@
     color: #C81022;
 }
 
+.table thead .glyphicon {
+    font-size: 12px;
+    opacity: 0.8;
+}
+
 
 /*
  * Pages tableaux seuls
@@ -82,6 +88,11 @@
     border-radius: 0;
 }
 
+.table td.small-width {
+    /* Header still extends the width of the column, but it will be minimal. */
+    width: 30px;
+}
+
 .auth-form {
     padding: 15px 0;
     background: #d86c7e;
diff --git a/kfet/static/kfet/css/libs/jquery-tablesorter-kfet.css b/kfet/static/kfet/css/libs/jquery-tablesorter-kfet.css
new file mode 100644
index 00000000..e69de29b
diff --git a/kfet/static/kfet/js/kfet.js b/kfet/static/kfet/js/kfet.js
index 75b80b04..144582ca 100644
--- a/kfet/static/kfet/js/kfet.js
+++ b/kfet/static/kfet/js/kfet.js
@@ -235,3 +235,77 @@ function submit_url(el) {
     let url = $(el).data('url');
     create_form(url).appendTo($('body')).submit();
 }
+
+
+/**
+ * jquery-tablesorter
+ * https://mottie.github.io/tablesorter/docs/
+ *
+ * Known bugs (v2.29.0):
+ * - Sort order icons in sticky headers are not updated.
+ *   Status: Fixed in next release.
+ *
+ * TODO:
+ * - Handle i18n.
+ */
+
+
+function registerBoolParser(id, true_str, false_str) {
+    $.tablesorter.addParser({
+        id: id,
+        format: function(s) {
+            return s.toLowerCase()
+                .replace(true_str, 1)
+                .replace(false_str, 0);
+        },
+        type: 'numeric'
+    });
+}
+
+
+// Parsers for the text representations of boolean.
+registerBoolParser('yesno', 'oui', 'non');
+
+registerBoolParser('article__is_sold', 'en vente', 'non vendu');
+registerBoolParser('article__hidden', 'caché', 'affiché');
+
+
+// https://mottie.github.io/tablesorter/docs/index.html#variable-defaults
+$.extend(true, $.tablesorter.defaults, {
+    headerTemplate: '{content} {icon}',
+
+    cssIconAsc  : 'glyphicon glyphicon-chevron-up',
+    cssIconDesc : 'glyphicon glyphicon-chevron-down',
+    cssIconNone : 'glyphicon glyphicon-resize-vertical',
+
+    // Only four-digits format year is handled by the builtin parser
+    // 'shortDate'.
+    dateFormat: 'ddmmyyyy',
+
+    // Accented characters are replaced with their non-accented one.
+    sortLocaleCompare: true,
+    // French format: 1 234,56
+    usNumberFormat: false,
+
+    widgets: ['stickyHeaders'],
+    widgetOptions: {
+        stickyHeaders_offset: '.navbar',
+    }
+});
+
+
+// https://mottie.github.io/tablesorter/docs/index.html#variable-language
+$.extend($.tablesorter.language, {
+    sortAsc      : 'Trié par ordre croissant, ',
+    sortDesc     : 'Trié par ordre décroissant, ',
+    sortNone     : 'Non trié, ',
+    sortDisabled : 'tri désactivé et/ou non-modifiable',
+    nextAsc      : 'cliquer pour trier par ordre croissant',
+    nextDesc     : 'cliquer pour trier par ordre décroissant',
+    nextNone     : 'cliquer pour retirer le tri'
+});
+
+
+$( function() {
+    $('.sortable').tablesorter();
+});
diff --git a/kfet/static/kfet/vendor/jquery-tablesorter/jquery.tablesorter.combined.js b/kfet/static/kfet/vendor/jquery-tablesorter/jquery.tablesorter.combined.js
new file mode 100644
index 00000000..457b76fb
--- /dev/null
+++ b/kfet/static/kfet/vendor/jquery-tablesorter/jquery.tablesorter.combined.js
@@ -0,0 +1,6014 @@
+/*! tablesorter (FORK) - updated 09-27-2017 (v2.29.0)*/
+/* Includes widgets ( storage,uitheme,columns,filter,stickyHeaders,resizable,saveSort ) */
+(function(factory) {
+	if (typeof define === 'function' && define.amd) {
+		define(['jquery'], factory);
+	} else if (typeof module === 'object' && typeof module.exports === 'object') {
+		module.exports = factory(require('jquery'));
+	} else {
+		factory(jQuery);
+	}
+}(function(jQuery) {
+
+/*! TableSorter (FORK) v2.29.0 *//*
+* Client-side table sorting with ease!
+* @requires jQuery v1.2.6+
+*
+* Copyright (c) 2007 Christian Bach
+* fork maintained by Rob Garrison
+*
+* Examples and original docs at: http://tablesorter.com
+* Dual licensed under the MIT and GPL licenses:
+* http://www.opensource.org/licenses/mit-license.php
+* http://www.gnu.org/licenses/gpl.html
+*
+* @type jQuery
+* @name tablesorter (FORK)
+* @cat Plugins/Tablesorter
+* @author Christian Bach - christian.bach@polyester.se
+* @contributor Rob Garrison - https://github.com/Mottie/tablesorter
+* @docs (fork) - https://mottie.github.io/tablesorter/docs/
+*/
+/*jshint browser:true, jquery:true, unused:false, expr: true */
+;( function( $ ) {
+	'use strict';
+	var ts = $.tablesorter = {
+
+		version : '2.29.0',
+
+		parsers : [],
+		widgets : [],
+		defaults : {
+
+			// *** appearance
+			theme            : 'default',  // adds tablesorter-{theme} to the table for styling
+			widthFixed       : false,      // adds colgroup to fix widths of columns
+			showProcessing   : false,      // show an indeterminate timer icon in the header when the table is sorted or filtered.
+
+			headerTemplate   : '{content}',// header layout template (HTML ok); {content} = innerHTML, {icon} = <i/> // class from cssIcon
+			onRenderTemplate : null,       // function( index, template ){ return template; }, // template is a string
+			onRenderHeader   : null,       // function( index ){}, // nothing to return
+
+			// *** functionality
+			cancelSelection  : true,       // prevent text selection in the header
+			tabIndex         : true,       // add tabindex to header for keyboard accessibility
+			dateFormat       : 'mmddyyyy', // other options: 'ddmmyyy' or 'yyyymmdd'
+			sortMultiSortKey : 'shiftKey', // key used to select additional columns
+			sortResetKey     : 'ctrlKey',  // key used to remove sorting on a column
+			usNumberFormat   : true,       // false for German '1.234.567,89' or French '1 234 567,89'
+			delayInit        : false,      // if false, the parsed table contents will not update until the first sort
+			serverSideSorting: false,      // if true, server-side sorting should be performed because client-side sorting will be disabled, but the ui and events will still be used.
+			resort           : true,       // default setting to trigger a resort after an 'update', 'addRows', 'updateCell', etc has completed
+
+			// *** sort options
+			headers          : {},         // set sorter, string, empty, locked order, sortInitialOrder, filter, etc.
+			ignoreCase       : true,       // ignore case while sorting
+			sortForce        : null,       // column(s) first sorted; always applied
+			sortList         : [],         // Initial sort order; applied initially; updated when manually sorted
+			sortAppend       : null,       // column(s) sorted last; always applied
+			sortStable       : false,      // when sorting two rows with exactly the same content, the original sort order is maintained
+
+			sortInitialOrder : 'asc',      // sort direction on first click
+			sortLocaleCompare: false,      // replace equivalent character (accented characters)
+			sortReset        : false,      // third click on the header will reset column to default - unsorted
+			sortRestart      : false,      // restart sort to 'sortInitialOrder' when clicking on previously unsorted columns
+
+			emptyTo          : 'bottom',   // sort empty cell to bottom, top, none, zero, emptyMax, emptyMin
+			stringTo         : 'max',      // sort strings in numerical column as max, min, top, bottom, zero
+			duplicateSpan    : true,       // colspan cells in the tbody will have duplicated content in the cache for each spanned column
+			textExtraction   : 'basic',    // text extraction method/function - function( node, table, cellIndex ){}
+			textAttribute    : 'data-text',// data-attribute that contains alternate cell text (used in default textExtraction function)
+			textSorter       : null,       // choose overall or specific column sorter function( a, b, direction, table, columnIndex ) [alt: ts.sortText]
+			numberSorter     : null,       // choose overall numeric sorter function( a, b, direction, maxColumnValue )
+
+			// *** widget options
+			initWidgets      : true,       // apply widgets on tablesorter initialization
+			widgetClass      : 'widget-{name}', // table class name template to match to include a widget
+			widgets          : [],         // method to add widgets, e.g. widgets: ['zebra']
+			widgetOptions    : {
+				zebra : [ 'even', 'odd' ]  // zebra widget alternating row class names
+			},
+
+			// *** callbacks
+			initialized      : null,       // function( table ){},
+
+			// *** extra css class names
+			tableClass       : '',
+			cssAsc           : '',
+			cssDesc          : '',
+			cssNone          : '',
+			cssHeader        : '',
+			cssHeaderRow     : '',
+			cssProcessing    : '', // processing icon applied to header during sort/filter
+
+			cssChildRow      : 'tablesorter-childRow', // class name indiciating that a row is to be attached to its parent
+			cssInfoBlock     : 'tablesorter-infoOnly', // don't sort tbody with this class name (only one class name allowed here!)
+			cssNoSort        : 'tablesorter-noSort',   // class name added to element inside header; clicking on it won't cause a sort
+			cssIgnoreRow     : 'tablesorter-ignoreRow',// header row to ignore; cells within this row will not be added to c.$headers
+
+			cssIcon          : 'tablesorter-icon', // if this class does not exist, the {icon} will not be added from the headerTemplate
+			cssIconNone      : '', // class name added to the icon when there is no column sort
+			cssIconAsc       : '', // class name added to the icon when the column has an ascending sort
+			cssIconDesc      : '', // class name added to the icon when the column has a descending sort
+			cssIconDisabled  : '', // class name added to the icon when the column has a disabled sort
+
+			// *** events
+			pointerClick     : 'click',
+			pointerDown      : 'mousedown',
+			pointerUp        : 'mouseup',
+
+			// *** selectors
+			selectorHeaders  : '> thead th, > thead td',
+			selectorSort     : 'th, td', // jQuery selector of content within selectorHeaders that is clickable to trigger a sort
+			selectorRemove   : '.remove-me',
+
+			// *** advanced
+			debug            : false,
+
+			// *** Internal variables
+			headerList: [],
+			empties: {},
+			strings: {},
+			parsers: [],
+
+			// *** parser options for validator; values must be falsy!
+			globalize: 0,
+			imgAttr: 0
+
+			// removed: widgetZebra: { css: ['even', 'odd'] }
+
+		},
+
+		// internal css classes - these will ALWAYS be added to
+		// the table and MUST only contain one class name - fixes #381
+		css : {
+			table      : 'tablesorter',
+			cssHasChild: 'tablesorter-hasChildRow',
+			childRow   : 'tablesorter-childRow',
+			colgroup   : 'tablesorter-colgroup',
+			header     : 'tablesorter-header',
+			headerRow  : 'tablesorter-headerRow',
+			headerIn   : 'tablesorter-header-inner',
+			icon       : 'tablesorter-icon',
+			processing : 'tablesorter-processing',
+			sortAsc    : 'tablesorter-headerAsc',
+			sortDesc   : 'tablesorter-headerDesc',
+			sortNone   : 'tablesorter-headerUnSorted'
+		},
+
+		// labels applied to sortable headers for accessibility (aria) support
+		language : {
+			sortAsc      : 'Ascending sort applied, ',
+			sortDesc     : 'Descending sort applied, ',
+			sortNone     : 'No sort applied, ',
+			sortDisabled : 'sorting is disabled',
+			nextAsc      : 'activate to apply an ascending sort',
+			nextDesc     : 'activate to apply a descending sort',
+			nextNone     : 'activate to remove the sort'
+		},
+
+		regex : {
+			templateContent : /\{content\}/g,
+			templateIcon    : /\{icon\}/g,
+			templateName    : /\{name\}/i,
+			spaces          : /\s+/g,
+			nonWord         : /\W/g,
+			formElements    : /(input|select|button|textarea)/i,
+
+			// *** sort functions ***
+			// regex used in natural sort
+			// chunk/tokenize numbers & letters
+			chunk  : /(^([+\-]?(?:\d*)(?:\.\d*)?(?:[eE][+\-]?\d+)?)?$|^0x[0-9a-f]+$|\d+)/gi,
+			// replace chunks @ ends
+			chunks : /(^\\0|\\0$)/,
+			hex    : /^0x[0-9a-f]+$/i,
+
+			// *** formatFloat ***
+			comma                : /,/g,
+			digitNonUS           : /[\s|\.]/g,
+			digitNegativeTest    : /^\s*\([.\d]+\)/,
+			digitNegativeReplace : /^\s*\(([.\d]+)\)/,
+
+			// *** isDigit ***
+			digitTest    : /^[\-+(]?\d+[)]?$/,
+			digitReplace : /[,.'"\s]/g
+
+		},
+
+		// digit sort, text location
+		string : {
+			max      : 1,
+			min      : -1,
+			emptymin : 1,
+			emptymax : -1,
+			zero     : 0,
+			none     : 0,
+			'null'   : 0,
+			top      : true,
+			bottom   : false
+		},
+
+		keyCodes : {
+			enter : 13
+		},
+
+		// placeholder date parser data (globalize)
+		dates : {},
+
+		// These methods can be applied on table.config instance
+		instanceMethods : {},
+
+		/*
+		▄█████ ██████ ██████ ██  ██ █████▄
+		▀█▄    ██▄▄     ██   ██  ██ ██▄▄██
+		   ▀█▄ ██▀▀     ██   ██  ██ ██▀▀▀
+		█████▀ ██████   ██   ▀████▀ ██
+		*/
+
+		setup : function( table, c ) {
+			// if no thead or tbody, or tablesorter is already present, quit
+			if ( !table || !table.tHead || table.tBodies.length === 0 || table.hasInitialized === true ) {
+				if ( c.debug ) {
+					if ( table.hasInitialized ) {
+						console.warn( 'Stopping initialization. Tablesorter has already been initialized' );
+					} else {
+						console.error( 'Stopping initialization! No table, thead or tbody', table );
+					}
+				}
+				return;
+			}
+
+			var tmp = '',
+				$table = $( table ),
+				meta = $.metadata;
+			// initialization flag
+			table.hasInitialized = false;
+			// table is being processed flag
+			table.isProcessing = true;
+			// make sure to store the config object
+			table.config = c;
+			// save the settings where they read
+			$.data( table, 'tablesorter', c );
+			if ( c.debug ) {
+				console[ console.group ? 'group' : 'log' ]( 'Initializing tablesorter v' + ts.version );
+				$.data( table, 'startoveralltimer', new Date() );
+			}
+
+			// removing this in version 3 (only supports jQuery 1.7+)
+			c.supportsDataObject = ( function( version ) {
+				version[ 0 ] = parseInt( version[ 0 ], 10 );
+				return ( version[ 0 ] > 1 ) || ( version[ 0 ] === 1 && parseInt( version[ 1 ], 10 ) >= 4 );
+			})( $.fn.jquery.split( '.' ) );
+			// ensure case insensitivity
+			c.emptyTo = c.emptyTo.toLowerCase();
+			c.stringTo = c.stringTo.toLowerCase();
+			c.last = { sortList : [], clickedIndex : -1 };
+			// add table theme class only if there isn't already one there
+			if ( !/tablesorter\-/.test( $table.attr( 'class' ) ) ) {
+				tmp = ( c.theme !== '' ? ' tablesorter-' + c.theme : '' );
+			}
+
+			// give the table a unique id, which will be used in namespace binding
+			if ( !c.namespace ) {
+				c.namespace = '.tablesorter' + Math.random().toString( 16 ).slice( 2 );
+			} else {
+				// make sure namespace starts with a period & doesn't have weird characters
+				c.namespace = '.' + c.namespace.replace( ts.regex.nonWord, '' );
+			}
+
+			c.table = table;
+			c.$table = $table
+				// add namespace to table to allow bindings on extra elements to target
+				// the parent table (e.g. parser-input-select)
+				.addClass( ts.css.table + ' ' + c.tableClass + tmp + ' ' + c.namespace.slice(1) )
+				.attr( 'role', 'grid' );
+			c.$headers = $table.find( c.selectorHeaders );
+
+			c.$table.children().children( 'tr' ).attr( 'role', 'row' );
+			c.$tbodies = $table.children( 'tbody:not(.' + c.cssInfoBlock + ')' ).attr({
+				'aria-live' : 'polite',
+				'aria-relevant' : 'all'
+			});
+			if ( c.$table.children( 'caption' ).length ) {
+				tmp = c.$table.children( 'caption' )[ 0 ];
+				if ( !tmp.id ) { tmp.id = c.namespace.slice( 1 ) + 'caption'; }
+				c.$table.attr( 'aria-labelledby', tmp.id );
+			}
+			c.widgetInit = {}; // keep a list of initialized widgets
+			// change textExtraction via data-attribute
+			c.textExtraction = c.$table.attr( 'data-text-extraction' ) || c.textExtraction || 'basic';
+			// build headers
+			ts.buildHeaders( c );
+			// fixate columns if the users supplies the fixedWidth option
+			// do this after theme has been applied
+			ts.fixColumnWidth( table );
+			// add widgets from class name
+			ts.addWidgetFromClass( table );
+			// add widget options before parsing (e.g. grouping widget has parser settings)
+			ts.applyWidgetOptions( table );
+			// try to auto detect column type, and store in tables config
+			ts.setupParsers( c );
+			// start total row count at zero
+			c.totalRows = 0;
+			ts.validateOptions( c );
+			// build the cache for the tbody cells
+			// delayInit will delay building the cache until the user starts a sort
+			if ( !c.delayInit ) { ts.buildCache( c ); }
+			// bind all header events and methods
+			ts.bindEvents( table, c.$headers, true );
+			ts.bindMethods( c );
+			// get sort list from jQuery data or metadata
+			// in jQuery < 1.4, an error occurs when calling $table.data()
+			if ( c.supportsDataObject && typeof $table.data().sortlist !== 'undefined' ) {
+				c.sortList = $table.data().sortlist;
+			} else if ( meta && ( $table.metadata() && $table.metadata().sortlist ) ) {
+				c.sortList = $table.metadata().sortlist;
+			}
+			// apply widget init code
+			ts.applyWidget( table, true );
+			// if user has supplied a sort list to constructor
+			if ( c.sortList.length > 0 ) {
+				ts.sortOn( c, c.sortList, {}, !c.initWidgets );
+			} else {
+				ts.setHeadersCss( c );
+				if ( c.initWidgets ) {
+					// apply widget format
+					ts.applyWidget( table, false );
+				}
+			}
+
+			// show processesing icon
+			if ( c.showProcessing ) {
+				$table
+				.unbind( 'sortBegin' + c.namespace + ' sortEnd' + c.namespace )
+				.bind( 'sortBegin' + c.namespace + ' sortEnd' + c.namespace, function( e ) {
+					clearTimeout( c.timerProcessing );
+					ts.isProcessing( table );
+					if ( e.type === 'sortBegin' ) {
+						c.timerProcessing = setTimeout( function() {
+							ts.isProcessing( table, true );
+						}, 500 );
+					}
+				});
+			}
+
+			// initialized
+			table.hasInitialized = true;
+			table.isProcessing = false;
+			if ( c.debug ) {
+				console.log( 'Overall initialization time:' + ts.benchmark( $.data( table, 'startoveralltimer' ) ) );
+				if ( c.debug && console.groupEnd ) { console.groupEnd(); }
+			}
+			$table.triggerHandler( 'tablesorter-initialized', table );
+			if ( typeof c.initialized === 'function' ) {
+				c.initialized( table );
+			}
+		},
+
+		bindMethods : function( c ) {
+			var $table = c.$table,
+				namespace = c.namespace,
+				events = ( 'sortReset update updateRows updateAll updateHeaders addRows updateCell updateComplete ' +
+					'sorton appendCache updateCache applyWidgetId applyWidgets refreshWidgets destroy mouseup ' +
+					'mouseleave ' ).split( ' ' )
+					.join( namespace + ' ' );
+			// apply easy methods that trigger bound events
+			$table
+			.unbind( events.replace( ts.regex.spaces, ' ' ) )
+			.bind( 'sortReset' + namespace, function( e, callback ) {
+				e.stopPropagation();
+				// using this.config to ensure functions are getting a non-cached version of the config
+				ts.sortReset( this.config, function( table ) {
+					if (table.isApplyingWidgets) {
+						// multiple triggers in a row... filterReset, then sortReset - see #1361
+						// wait to update widgets
+						setTimeout( function() {
+							ts.applyWidget( table, '', callback );
+						}, 100 );
+					} else {
+						ts.applyWidget( table, '', callback );
+					}
+				});
+			})
+			.bind( 'updateAll' + namespace, function( e, resort, callback ) {
+				e.stopPropagation();
+				ts.updateAll( this.config, resort, callback );
+			})
+			.bind( 'update' + namespace + ' updateRows' + namespace, function( e, resort, callback ) {
+				e.stopPropagation();
+				ts.update( this.config, resort, callback );
+			})
+			.bind( 'updateHeaders' + namespace, function( e, callback ) {
+				e.stopPropagation();
+				ts.updateHeaders( this.config, callback );
+			})
+			.bind( 'updateCell' + namespace, function( e, cell, resort, callback ) {
+				e.stopPropagation();
+				ts.updateCell( this.config, cell, resort, callback );
+			})
+			.bind( 'addRows' + namespace, function( e, $row, resort, callback ) {
+				e.stopPropagation();
+				ts.addRows( this.config, $row, resort, callback );
+			})
+			.bind( 'updateComplete' + namespace, function() {
+				this.isUpdating = false;
+			})
+			.bind( 'sorton' + namespace, function( e, list, callback, init ) {
+				e.stopPropagation();
+				ts.sortOn( this.config, list, callback, init );
+			})
+			.bind( 'appendCache' + namespace, function( e, callback, init ) {
+				e.stopPropagation();
+				ts.appendCache( this.config, init );
+				if ( $.isFunction( callback ) ) {
+					callback( this );
+				}
+			})
+			// $tbodies variable is used by the tbody sorting widget
+			.bind( 'updateCache' + namespace, function( e, callback, $tbodies ) {
+				e.stopPropagation();
+				ts.updateCache( this.config, callback, $tbodies );
+			})
+			.bind( 'applyWidgetId' + namespace, function( e, id ) {
+				e.stopPropagation();
+				ts.applyWidgetId( this, id );
+			})
+			.bind( 'applyWidgets' + namespace, function( e, callback ) {
+				e.stopPropagation();
+				// apply widgets (false = not initializing)
+				ts.applyWidget( this, false, callback );
+			})
+			.bind( 'refreshWidgets' + namespace, function( e, all, dontapply ) {
+				e.stopPropagation();
+				ts.refreshWidgets( this, all, dontapply );
+			})
+			.bind( 'removeWidget' + namespace, function( e, name, refreshing ) {
+				e.stopPropagation();
+				ts.removeWidget( this, name, refreshing );
+			})
+			.bind( 'destroy' + namespace, function( e, removeClasses, callback ) {
+				e.stopPropagation();
+				ts.destroy( this, removeClasses, callback );
+			})
+			.bind( 'resetToLoadState' + namespace, function( e ) {
+				e.stopPropagation();
+				// remove all widgets
+				ts.removeWidget( this, true, false );
+				var tmp = $.extend( true, {}, c.originalSettings );
+				// restore original settings; this clears out current settings, but does not clear
+				// values saved to storage.
+				c = $.extend( true, {}, ts.defaults, tmp );
+				c.originalSettings = tmp;
+				this.hasInitialized = false;
+				// setup the entire table again
+				ts.setup( this, c );
+			});
+		},
+
+		bindEvents : function( table, $headers, core ) {
+			table = $( table )[ 0 ];
+			var tmp,
+				c = table.config,
+				namespace = c.namespace,
+				downTarget = null;
+			if ( core !== true ) {
+				$headers.addClass( namespace.slice( 1 ) + '_extra_headers' );
+				tmp = ts.getClosest( $headers, 'table' );
+				if ( tmp.length && tmp[ 0 ].nodeName === 'TABLE' && tmp[ 0 ] !== table ) {
+					$( tmp[ 0 ] ).addClass( namespace.slice( 1 ) + '_extra_table' );
+				}
+			}
+			tmp = ( c.pointerDown + ' ' + c.pointerUp + ' ' + c.pointerClick + ' sort keyup ' )
+				.replace( ts.regex.spaces, ' ' )
+				.split( ' ' )
+				.join( namespace + ' ' );
+			// apply event handling to headers and/or additional headers (stickyheaders, scroller, etc)
+			$headers
+			// http://stackoverflow.com/questions/5312849/jquery-find-self;
+			.find( c.selectorSort )
+			.add( $headers.filter( c.selectorSort ) )
+			.unbind( tmp )
+			.bind( tmp, function( e, external ) {
+				var $cell, cell, temp,
+					$target = $( e.target ),
+					// wrap event type in spaces, so the match doesn't trigger on inner words
+					type = ' ' + e.type + ' ';
+				// only recognize left clicks
+				if ( ( ( e.which || e.button ) !== 1 && !type.match( ' ' + c.pointerClick + ' | sort | keyup ' ) ) ||
+					// allow pressing enter
+					( type === ' keyup ' && e.which !== ts.keyCodes.enter ) ||
+					// allow triggering a click event (e.which is undefined) & ignore physical clicks
+					( type.match( ' ' + c.pointerClick + ' ' ) && typeof e.which !== 'undefined' ) ) {
+					return;
+				}
+				// ignore mouseup if mousedown wasn't on the same target
+				if ( type.match( ' ' + c.pointerUp + ' ' ) && downTarget !== e.target && external !== true ) {
+					return;
+				}
+				// set target on mousedown
+				if ( type.match( ' ' + c.pointerDown + ' ' ) ) {
+					downTarget = e.target;
+					// preventDefault needed or jQuery v1.3.2 and older throws an
+					// "Uncaught TypeError: handler.apply is not a function" error
+					temp = $target.jquery.split( '.' );
+					if ( temp[ 0 ] === '1' && temp[ 1 ] < 4 ) { e.preventDefault(); }
+					return;
+				}
+				downTarget = null;
+				// prevent sort being triggered on form elements
+				if ( ts.regex.formElements.test( e.target.nodeName ) ||
+					// nosort class name, or elements within a nosort container
+					$target.hasClass( c.cssNoSort ) || $target.parents( '.' + c.cssNoSort ).length > 0 ||
+					// elements within a button
+					$target.parents( 'button' ).length > 0 ) {
+					return !c.cancelSelection;
+				}
+				if ( c.delayInit && ts.isEmptyObject( c.cache ) ) {
+					ts.buildCache( c );
+				}
+				// jQuery v1.2.6 doesn't have closest()
+				$cell = ts.getHeaderCell( $( this ) );
+				// reference original table headers and find the same cell
+				// don't use $headers or IE8 throws an error - see #987
+				temp = $headers.index( $cell );
+				c.last.clickedIndex = ( temp < 0 ) ? $cell.attr( 'data-column' ) : temp;
+				// use column index if $headers is undefined
+				cell = c.$headers[ c.last.clickedIndex ];
+				if ( cell && !cell.sortDisabled ) {
+					ts.initSort( c, cell, e );
+				}
+			});
+			if ( c.cancelSelection ) {
+				// cancel selection
+				$headers
+					.attr( 'unselectable', 'on' )
+					.bind( 'selectstart', false )
+					.css({
+						'user-select' : 'none',
+						'MozUserSelect' : 'none' // not needed for jQuery 1.8+
+					});
+			}
+		},
+
+		buildHeaders : function( c ) {
+			var $temp, icon, timer, indx;
+			c.headerList = [];
+			c.headerContent = [];
+			c.sortVars = [];
+			if ( c.debug ) {
+				timer = new Date();
+			}
+			// children tr in tfoot - see issue #196 & #547
+			// don't pass table.config to computeColumnIndex here - widgets (math) pass it to "quickly" index tbody cells
+			c.columns = ts.computeColumnIndex( c.$table.children( 'thead, tfoot' ).children( 'tr' ) );
+			// add icon if cssIcon option exists
+			icon = c.cssIcon ?
+				'<i class="' + ( c.cssIcon === ts.css.icon ? ts.css.icon : c.cssIcon + ' ' + ts.css.icon ) + '"></i>' :
+				'';
+			// redefine c.$headers here in case of an updateAll that replaces or adds an entire header cell - see #683
+			c.$headers = $( $.map( c.$table.find( c.selectorHeaders ), function( elem, index ) {
+				var configHeaders, header, column, template, tmp, $th,
+					$elem = $( elem );
+				// ignore cell (don't add it to c.$headers) if row has ignoreRow class
+				if ( $elem.parent().hasClass( c.cssIgnoreRow ) ) { return; }
+				// make sure to get header cell & not column indexed cell
+				configHeaders = ts.getColumnData( c.table, c.headers, index, true );
+				// save original header content
+				c.headerContent[ index ] = $elem.html();
+				// if headerTemplate is empty, don't reformat the header cell
+				if ( c.headerTemplate !== '' && !$elem.find( '.' + ts.css.headerIn ).length ) {
+					// set up header template
+					template = c.headerTemplate
+						.replace( ts.regex.templateContent, $elem.html() )
+						.replace( ts.regex.templateIcon, $elem.find( '.' + ts.css.icon ).length ? '' : icon );
+					if ( c.onRenderTemplate ) {
+						header = c.onRenderTemplate.apply( $elem, [ index, template ] );
+						// only change t if something is returned
+						if ( header && typeof header === 'string' ) {
+							template = header;
+						}
+					}
+					$elem.html( '<div class="' + ts.css.headerIn + '">' + template + '</div>' ); // faster than wrapInner
+				}
+				if ( c.onRenderHeader ) {
+					c.onRenderHeader.apply( $elem, [ index, c, c.$table ] );
+				}
+				// data-column stored on th or td only
+				$th = ts.getHeaderCell( $elem );
+				column = parseInt( $th.attr( 'data-column' ), 10 );
+				elem.column = column;
+				tmp = ts.getOrder( ts.getData( $elem, configHeaders, 'sortInitialOrder' ) || c.sortInitialOrder );
+				// this may get updated numerous times if there are multiple rows
+				c.sortVars[ column ] = {
+					count : -1, // set to -1 because clicking on the header automatically adds one
+					order:  tmp ?
+						( c.sortReset ? [ 1, 0, 2 ] : [ 1, 0 ] ) : // desc, asc, unsorted
+						( c.sortReset ? [ 0, 1, 2 ] : [ 0, 1 ] ),  // asc, desc, unsorted
+					lockedOrder : false
+				};
+				tmp = ts.getData( $elem, configHeaders, 'lockedOrder' ) || false;
+				if ( typeof tmp !== 'undefined' && tmp !== false ) {
+					c.sortVars[ column ].lockedOrder = true;
+					c.sortVars[ column ].order = ts.getOrder( tmp ) ? [ 1, 1 ] : [ 0, 0 ];
+				}
+				// add cell to headerList
+				c.headerList[ index ] = elem;
+				$elem.addClass( ts.css.header + ' ' + c.cssHeader );
+				// add to parent in case there are multiple rows
+				ts.getClosest( $elem, 'tr' )
+					.addClass( ts.css.headerRow + ' ' + c.cssHeaderRow )
+					.attr( 'role', 'row' );
+				// allow keyboard cursor to focus on element
+				if ( c.tabIndex ) {
+					$elem.attr( 'tabindex', 0 );
+				}
+				return elem;
+			}) );
+			// cache headers per column
+			c.$headerIndexed = [];
+			for ( indx = 0; indx < c.columns; indx++ ) {
+				// colspan in header making a column undefined
+				if ( ts.isEmptyObject( c.sortVars[ indx ] ) ) {
+					c.sortVars[ indx ] = {};
+				}
+				$temp = c.$headers.filter( '[data-column="' + indx + '"]' );
+				// target sortable column cells, unless there are none, then use non-sortable cells
+				// .last() added in jQuery 1.4; use .filter(':last') to maintain compatibility with jQuery v1.2.6
+				c.$headerIndexed[ indx ] = $temp.length ?
+					$temp.not( '.sorter-false' ).length ?
+						$temp.not( '.sorter-false' ).filter( ':last' ) :
+						$temp.filter( ':last' ) :
+					$();
+			}
+			c.$table.find( c.selectorHeaders ).attr({
+				scope: 'col',
+				role : 'columnheader'
+			});
+			// enable/disable sorting
+			ts.updateHeader( c );
+			if ( c.debug ) {
+				console.log( 'Built headers:' + ts.benchmark( timer ) );
+				console.log( c.$headers );
+			}
+		},
+
+		// Use it to add a set of methods to table.config which will be available for all tables.
+		// This should be done before table initialization
+		addInstanceMethods : function( methods ) {
+			$.extend( ts.instanceMethods, methods );
+		},
+
+		/*
+		█████▄ ▄████▄ █████▄ ▄█████ ██████ █████▄ ▄█████
+		██▄▄██ ██▄▄██ ██▄▄██ ▀█▄    ██▄▄   ██▄▄██ ▀█▄
+		██▀▀▀  ██▀▀██ ██▀██     ▀█▄ ██▀▀   ██▀██     ▀█▄
+		██     ██  ██ ██  ██ █████▀ ██████ ██  ██ █████▀
+		*/
+		setupParsers : function( c, $tbodies ) {
+			var rows, list, span, max, colIndex, indx, header, configHeaders,
+				noParser, parser, extractor, time, tbody, len,
+				table = c.table,
+				tbodyIndex = 0,
+				debug = {};
+			// update table bodies in case we start with an empty table
+			c.$tbodies = c.$table.children( 'tbody:not(.' + c.cssInfoBlock + ')' );
+			tbody = typeof $tbodies === 'undefined' ? c.$tbodies : $tbodies;
+			len = tbody.length;
+			if ( len === 0 ) {
+				return c.debug ? console.warn( 'Warning: *Empty table!* Not building a parser cache' ) : '';
+			} else if ( c.debug ) {
+				time = new Date();
+				console[ console.group ? 'group' : 'log' ]( 'Detecting parsers for each column' );
+			}
+			list = {
+				extractors: [],
+				parsers: []
+			};
+			while ( tbodyIndex < len ) {
+				rows = tbody[ tbodyIndex ].rows;
+				if ( rows.length ) {
+					colIndex = 0;
+					max = c.columns;
+					for ( indx = 0; indx < max; indx++ ) {
+						header = c.$headerIndexed[ colIndex ];
+						if ( header && header.length ) {
+							// get column indexed table cell; adding true parameter fixes #1362 but
+							// it would break backwards compatibility...
+							configHeaders = ts.getColumnData( table, c.headers, colIndex ); // , true );
+							// get column parser/extractor
+							extractor = ts.getParserById( ts.getData( header, configHeaders, 'extractor' ) );
+							parser = ts.getParserById( ts.getData( header, configHeaders, 'sorter' ) );
+							noParser = ts.getData( header, configHeaders, 'parser' ) === 'false';
+							// empty cells behaviour - keeping emptyToBottom for backwards compatibility
+							c.empties[colIndex] = (
+								ts.getData( header, configHeaders, 'empty' ) ||
+								c.emptyTo || ( c.emptyToBottom ? 'bottom' : 'top' ) ).toLowerCase();
+							// text strings behaviour in numerical sorts
+							c.strings[colIndex] = (
+								ts.getData( header, configHeaders, 'string' ) ||
+								c.stringTo ||
+								'max' ).toLowerCase();
+							if ( noParser ) {
+								parser = ts.getParserById( 'no-parser' );
+							}
+							if ( !extractor ) {
+								// For now, maybe detect someday
+								extractor = false;
+							}
+							if ( !parser ) {
+								parser = ts.detectParserForColumn( c, rows, -1, colIndex );
+							}
+							if ( c.debug ) {
+								debug[ '(' + colIndex + ') ' + header.text() ] = {
+									parser : parser.id,
+									extractor : extractor ? extractor.id : 'none',
+									string : c.strings[ colIndex ],
+									empty  : c.empties[ colIndex ]
+								};
+							}
+							list.parsers[ colIndex ] = parser;
+							list.extractors[ colIndex ] = extractor;
+							span = header[ 0 ].colSpan - 1;
+							if ( span > 0 ) {
+								colIndex += span;
+								max += span;
+								while ( span + 1 > 0 ) {
+									// set colspan columns to use the same parsers & extractors
+									list.parsers[ colIndex - span ] = parser;
+									list.extractors[ colIndex - span ] = extractor;
+									span--;
+								}
+							}
+						}
+						colIndex++;
+					}
+				}
+				tbodyIndex += ( list.parsers.length ) ? len : 1;
+			}
+			if ( c.debug ) {
+				if ( !ts.isEmptyObject( debug ) ) {
+					console[ console.table ? 'table' : 'log' ]( debug );
+				} else {
+					console.warn( '  No parsers detected!' );
+				}
+				console.log( 'Completed detecting parsers' + ts.benchmark( time ) );
+				if ( console.groupEnd ) { console.groupEnd(); }
+			}
+			c.parsers = list.parsers;
+			c.extractors = list.extractors;
+		},
+
+		addParser : function( parser ) {
+			var indx,
+				len = ts.parsers.length,
+				add = true;
+			for ( indx = 0; indx < len; indx++ ) {
+				if ( ts.parsers[ indx ].id.toLowerCase() === parser.id.toLowerCase() ) {
+					add = false;
+				}
+			}
+			if ( add ) {
+				ts.parsers[ ts.parsers.length ] = parser;
+			}
+		},
+
+		getParserById : function( name ) {
+			/*jshint eqeqeq:false */
+			if ( name == 'false' ) { return false; }
+			var indx,
+				len = ts.parsers.length;
+			for ( indx = 0; indx < len; indx++ ) {
+				if ( ts.parsers[ indx ].id.toLowerCase() === ( name.toString() ).toLowerCase() ) {
+					return ts.parsers[ indx ];
+				}
+			}
+			return false;
+		},
+
+		detectParserForColumn : function( c, rows, rowIndex, cellIndex ) {
+			var cur, $node, row,
+				indx = ts.parsers.length,
+				node = false,
+				nodeValue = '',
+				keepLooking = true;
+			while ( nodeValue === '' && keepLooking ) {
+				rowIndex++;
+				row = rows[ rowIndex ];
+				// stop looking after 50 empty rows
+				if ( row && rowIndex < 50 ) {
+					if ( row.className.indexOf( ts.cssIgnoreRow ) < 0 ) {
+						node = rows[ rowIndex ].cells[ cellIndex ];
+						nodeValue = ts.getElementText( c, node, cellIndex );
+						$node = $( node );
+						if ( c.debug ) {
+							console.log( 'Checking if value was empty on row ' + rowIndex + ', column: ' +
+								cellIndex + ': "' + nodeValue + '"' );
+						}
+					}
+				} else {
+					keepLooking = false;
+				}
+			}
+			while ( --indx >= 0 ) {
+				cur = ts.parsers[ indx ];
+				// ignore the default text parser because it will always be true
+				if ( cur && cur.id !== 'text' && cur.is && cur.is( nodeValue, c.table, node, $node ) ) {
+					return cur;
+				}
+			}
+			// nothing found, return the generic parser (text)
+			return ts.getParserById( 'text' );
+		},
+
+		getElementText : function( c, node, cellIndex ) {
+			if ( !node ) { return ''; }
+			var tmp,
+				extract = c.textExtraction || '',
+				// node could be a jquery object
+				// http://jsperf.com/jquery-vs-instanceof-jquery/2
+				$node = node.jquery ? node : $( node );
+			if ( typeof extract === 'string' ) {
+				// check data-attribute first when set to 'basic'; don't use node.innerText - it's really slow!
+				// http://www.kellegous.com/j/2013/02/27/innertext-vs-textcontent/
+				if ( extract === 'basic' && typeof ( tmp = $node.attr( c.textAttribute ) ) !== 'undefined' ) {
+					return $.trim( tmp );
+				}
+				return $.trim( node.textContent || $node.text() );
+			} else {
+				if ( typeof extract === 'function' ) {
+					return $.trim( extract( $node[ 0 ], c.table, cellIndex ) );
+				} else if ( typeof ( tmp = ts.getColumnData( c.table, extract, cellIndex ) ) === 'function' ) {
+					return $.trim( tmp( $node[ 0 ], c.table, cellIndex ) );
+				}
+			}
+			// fallback
+			return $.trim( $node[ 0 ].textContent || $node.text() );
+		},
+
+		// centralized function to extract/parse cell contents
+		getParsedText : function( c, cell, colIndex, txt ) {
+			if ( typeof txt === 'undefined' ) {
+				txt = ts.getElementText( c, cell, colIndex );
+			}
+			// if no parser, make sure to return the txt
+			var val = '' + txt,
+				parser = c.parsers[ colIndex ],
+				extractor = c.extractors[ colIndex ];
+			if ( parser ) {
+				// do extract before parsing, if there is one
+				if ( extractor && typeof extractor.format === 'function' ) {
+					txt = extractor.format( txt, c.table, cell, colIndex );
+				}
+				// allow parsing if the string is empty, previously parsing would change it to zero,
+				// in case the parser needs to extract data from the table cell attributes
+				val = parser.id === 'no-parser' ? '' :
+					// make sure txt is a string (extractor may have converted it)
+					parser.format( '' + txt, c.table, cell, colIndex );
+				if ( c.ignoreCase && typeof val === 'string' ) {
+					val = val.toLowerCase();
+				}
+			}
+			return val;
+		},
+
+		/*
+		▄████▄ ▄████▄ ▄████▄ ██  ██ ██████
+		██  ▀▀ ██▄▄██ ██  ▀▀ ██▄▄██ ██▄▄
+		██  ▄▄ ██▀▀██ ██  ▄▄ ██▀▀██ ██▀▀
+		▀████▀ ██  ██ ▀████▀ ██  ██ ██████
+		*/
+		buildCache : function( c, callback, $tbodies ) {
+			var cache, val, txt, rowIndex, colIndex, tbodyIndex, $tbody, $row,
+				cols, $cells, cell, cacheTime, totalRows, rowData, prevRowData,
+				colMax, span, cacheIndex, hasParser, max, len, index,
+				table = c.table,
+				parsers = c.parsers;
+			// update tbody variable
+			c.$tbodies = c.$table.children( 'tbody:not(.' + c.cssInfoBlock + ')' );
+			$tbody = typeof $tbodies === 'undefined' ? c.$tbodies : $tbodies,
+			c.cache = {};
+			c.totalRows = 0;
+			// if no parsers found, return - it's an empty table.
+			if ( !parsers ) {
+				return c.debug ? console.warn( 'Warning: *Empty table!* Not building a cache' ) : '';
+			}
+			if ( c.debug ) {
+				cacheTime = new Date();
+			}
+			// processing icon
+			if ( c.showProcessing ) {
+				ts.isProcessing( table, true );
+			}
+			for ( tbodyIndex = 0; tbodyIndex < $tbody.length; tbodyIndex++ ) {
+				colMax = []; // column max value per tbody
+				cache = c.cache[ tbodyIndex ] = {
+					normalized: [] // array of normalized row data; last entry contains 'rowData' above
+					// colMax: #   // added at the end
+				};
+
+				totalRows = ( $tbody[ tbodyIndex ] && $tbody[ tbodyIndex ].rows.length ) || 0;
+				for ( rowIndex = 0; rowIndex < totalRows; ++rowIndex ) {
+					rowData = {
+						// order: original row order #
+						// $row : jQuery Object[]
+						child: [], // child row text (filter widget)
+						raw: []    // original row text
+					};
+					/** Add the table data to main data array */
+					$row = $( $tbody[ tbodyIndex ].rows[ rowIndex ] );
+					cols = [];
+					// ignore "remove-me" rows
+					if ( $row.hasClass( c.selectorRemove.slice(1) ) ) {
+						continue;
+					}
+					// if this is a child row, add it to the last row's children and continue to the next row
+					// ignore child row class, if it is the first row
+					if ( $row.hasClass( c.cssChildRow ) && rowIndex !== 0 ) {
+						len = cache.normalized.length - 1;
+						prevRowData = cache.normalized[ len ][ c.columns ];
+						prevRowData.$row = prevRowData.$row.add( $row );
+						// add 'hasChild' class name to parent row
+						if ( !$row.prev().hasClass( c.cssChildRow ) ) {
+							$row.prev().addClass( ts.css.cssHasChild );
+						}
+						// save child row content (un-parsed!)
+						$cells = $row.children( 'th, td' );
+						len = prevRowData.child.length;
+						prevRowData.child[ len ] = [];
+						// child row content does not account for colspans/rowspans; so indexing may be off
+						cacheIndex = 0;
+						max = c.columns;
+						for ( colIndex = 0; colIndex < max; colIndex++ ) {
+							cell = $cells[ colIndex ];
+							if ( cell ) {
+								prevRowData.child[ len ][ colIndex ] = ts.getParsedText( c, cell, colIndex );
+								span = $cells[ colIndex ].colSpan - 1;
+								if ( span > 0 ) {
+									cacheIndex += span;
+									max += span;
+								}
+							}
+							cacheIndex++;
+						}
+						// go to the next for loop
+						continue;
+					}
+					rowData.$row = $row;
+					rowData.order = rowIndex; // add original row position to rowCache
+					cacheIndex = 0;
+					max = c.columns;
+					for ( colIndex = 0; colIndex < max; ++colIndex ) {
+						cell = $row[ 0 ].cells[ colIndex ];
+						if ( cell && cacheIndex < c.columns ) {
+							hasParser = typeof parsers[ cacheIndex ] !== 'undefined';
+							if ( !hasParser && c.debug ) {
+								console.warn( 'No parser found for row: ' + rowIndex + ', column: ' + colIndex +
+									'; cell containing: "' + $(cell).text() + '"; does it have a header?' );
+							}
+							val = ts.getElementText( c, cell, cacheIndex );
+							rowData.raw[ cacheIndex ] = val; // save original row text
+							// save raw column text even if there is no parser set
+							txt = ts.getParsedText( c, cell, cacheIndex, val );
+							cols[ cacheIndex ] = txt;
+							if ( hasParser && ( parsers[ cacheIndex ].type || '' ).toLowerCase() === 'numeric' ) {
+								// determine column max value (ignore sign)
+								colMax[ cacheIndex ] = Math.max( Math.abs( txt ) || 0, colMax[ cacheIndex ] || 0 );
+							}
+							// allow colSpan in tbody
+							span = cell.colSpan - 1;
+							if ( span > 0 ) {
+								index = 0;
+								while ( index <= span ) {
+									// duplicate text (or not) to spanned columns
+									// instead of setting duplicate span to empty string, use textExtraction to try to get a value
+									// see http://stackoverflow.com/q/36449711/145346
+									txt = c.duplicateSpan || index === 0 ?
+										val :
+										typeof c.textExtraction !== 'string' ?
+											ts.getElementText( c, cell, cacheIndex + index ) || '' :
+											'';
+									rowData.raw[ cacheIndex + index ] = txt;
+									cols[ cacheIndex + index ] = txt;
+									index++;
+								}
+								cacheIndex += span;
+								max += span;
+							}
+						}
+						cacheIndex++;
+					}
+					// ensure rowData is always in the same location (after the last column)
+					cols[ c.columns ] = rowData;
+					cache.normalized[ cache.normalized.length ] = cols;
+				}
+				cache.colMax = colMax;
+				// total up rows, not including child rows
+				c.totalRows += cache.normalized.length;
+
+			}
+			if ( c.showProcessing ) {
+				ts.isProcessing( table ); // remove processing icon
+			}
+			if ( c.debug ) {
+				len = Math.min( 5, c.cache[ 0 ].normalized.length );
+				console[ console.group ? 'group' : 'log' ]( 'Building cache for ' + c.totalRows +
+					' rows (showing ' + len + ' rows in log) and ' + c.columns + ' columns' +
+					ts.benchmark( cacheTime ) );
+				val = {};
+				for ( colIndex = 0; colIndex < c.columns; colIndex++ ) {
+					for ( cacheIndex = 0; cacheIndex < len; cacheIndex++ ) {
+						if ( !val[ 'row: ' + cacheIndex ] ) {
+							val[ 'row: ' + cacheIndex ] = {};
+						}
+						val[ 'row: ' + cacheIndex ][ c.$headerIndexed[ colIndex ].text() ] =
+							c.cache[ 0 ].normalized[ cacheIndex ][ colIndex ];
+					}
+				}
+				console[ console.table ? 'table' : 'log' ]( val );
+				if ( console.groupEnd ) { console.groupEnd(); }
+			}
+			if ( $.isFunction( callback ) ) {
+				callback( table );
+			}
+		},
+
+		getColumnText : function( table, column, callback, rowFilter ) {
+			table = $( table )[0];
+			var tbodyIndex, rowIndex, cache, row, tbodyLen, rowLen, raw, parsed, $cell, result,
+				hasCallback = typeof callback === 'function',
+				allColumns = column === 'all',
+				data = { raw : [], parsed: [], $cell: [] },
+				c = table.config;
+			if ( ts.isEmptyObject( c ) ) {
+				if ( c.debug ) {
+					console.warn( 'No cache found - aborting getColumnText function!' );
+				}
+			} else {
+				tbodyLen = c.$tbodies.length;
+				for ( tbodyIndex = 0; tbodyIndex < tbodyLen; tbodyIndex++ ) {
+					cache = c.cache[ tbodyIndex ].normalized;
+					rowLen = cache.length;
+					for ( rowIndex = 0; rowIndex < rowLen; rowIndex++ ) {
+						row = cache[ rowIndex ];
+						if ( rowFilter && !row[ c.columns ].$row.is( rowFilter ) ) {
+							continue;
+						}
+						result = true;
+						parsed = ( allColumns ) ? row.slice( 0, c.columns ) : row[ column ];
+						row = row[ c.columns ];
+						raw = ( allColumns ) ? row.raw : row.raw[ column ];
+						$cell = ( allColumns ) ? row.$row.children() : row.$row.children().eq( column );
+						if ( hasCallback ) {
+							result = callback({
+								tbodyIndex : tbodyIndex,
+								rowIndex : rowIndex,
+								parsed : parsed,
+								raw : raw,
+								$row : row.$row,
+								$cell : $cell
+							});
+						}
+						if ( result !== false ) {
+							data.parsed[ data.parsed.length ] = parsed;
+							data.raw[ data.raw.length ] = raw;
+							data.$cell[ data.$cell.length ] = $cell;
+						}
+					}
+				}
+				// return everything
+				return data;
+			}
+		},
+
+		/*
+		██  ██ █████▄ █████▄ ▄████▄ ██████ ██████
+		██  ██ ██▄▄██ ██  ██ ██▄▄██   ██   ██▄▄
+		██  ██ ██▀▀▀  ██  ██ ██▀▀██   ██   ██▀▀
+		▀████▀ ██     █████▀ ██  ██   ██   ██████
+		*/
+		setHeadersCss : function( c ) {
+			var indx, column,
+				list = c.sortList,
+				len = list.length,
+				none = ts.css.sortNone + ' ' + c.cssNone,
+				css = [ ts.css.sortAsc + ' ' + c.cssAsc, ts.css.sortDesc + ' ' + c.cssDesc ],
+				cssIcon = [ c.cssIconAsc, c.cssIconDesc, c.cssIconNone ],
+				aria = [ 'ascending', 'descending' ],
+				// find the footer
+				$extras = c.$table
+					.find( 'tfoot tr' )
+					.children( 'td, th' )
+					.add( $( c.namespace + '_extra_headers' ) )
+					.removeClass( css.join( ' ' ) ),
+				// remove all header information
+				$sorted = c.$headers
+					.add( $( 'thead ' + c.namespace + '_extra_headers' ) )
+					.removeClass( css.join( ' ' ) )
+					.addClass( none )
+					.attr( 'aria-sort', 'none' )
+					.find( '.' + ts.css.icon )
+					.removeClass( cssIcon.join( ' ' ) )
+					.end();
+			// add css none to all sortable headers
+			$sorted
+				.not( '.sorter-false' )
+				.find( '.' + ts.css.icon )
+				.addClass( cssIcon[ 2 ] );
+			// add disabled css icon class
+			if ( c.cssIconDisabled ) {
+				$sorted
+					.filter( '.sorter-false' )
+					.find( '.' + ts.css.icon )
+					.addClass( c.cssIconDisabled );
+			}
+			for ( indx = 0; indx < len; indx++ ) {
+				// direction = 2 means reset!
+				if ( list[ indx ][ 1 ] !== 2 ) {
+					// multicolumn sorting updating - see #1005
+					// .not(function(){}) needs jQuery 1.4
+					// filter(function(i, el){}) <- el is undefined in jQuery v1.2.6
+					$sorted = c.$headers.filter( function( i ) {
+						// only include headers that are in the sortList (this includes colspans)
+						var include = true,
+							$el = c.$headers.eq( i ),
+							col = parseInt( $el.attr( 'data-column' ), 10 ),
+							end = col + c.$headers[ i ].colSpan;
+						for ( ; col < end; col++ ) {
+							include = include ? include || ts.isValueInArray( col, c.sortList ) > -1 : false;
+						}
+						return include;
+					});
+
+					// choose the :last in case there are nested columns
+					$sorted = $sorted
+						.not( '.sorter-false' )
+						.filter( '[data-column="' + list[ indx ][ 0 ] + '"]' + ( len === 1 ? ':last' : '' ) );
+					if ( $sorted.length ) {
+						for ( column = 0; column < $sorted.length; column++ ) {
+							if ( !$sorted[ column ].sortDisabled ) {
+								$sorted
+									.eq( column )
+									.removeClass( none )
+									.addClass( css[ list[ indx ][ 1 ] ] )
+									.attr( 'aria-sort', aria[ list[ indx ][ 1 ] ] )
+									.find( '.' + ts.css.icon )
+									.removeClass( cssIcon[ 2 ] )
+									.addClass( cssIcon[ list[ indx ][ 1 ] ] );
+							}
+						}
+						// add sorted class to footer & extra headers, if they exist
+						if ( $extras.length ) {
+							$extras
+								.filter( '[data-column="' + list[ indx ][ 0 ] + '"]' )
+								.removeClass( none )
+								.addClass( css[ list[ indx ][ 1 ] ] );
+						}
+					}
+				}
+			}
+			// add verbose aria labels
+			len = c.$headers.length;
+			for ( indx = 0; indx < len; indx++ ) {
+				ts.setColumnAriaLabel( c, c.$headers.eq( indx ) );
+			}
+		},
+
+		// This function does NOT return closest if the $el matches the selector
+		getClosest : function( $el, selector ) {
+			return $.fn.closest ?
+				$el.closest( selector ) :
+				$el.parents( selector ).filter( ':first' );
+		},
+
+		getHeaderCell : function( $el ) {
+			// jQuery v1.2.6 doesn't have closest()
+			if ( $.fn.closest ) {
+				return $el.closest( 'th, td' );
+			}
+			return /TH|TD/.test( $el[0].nodeName ) ?
+				$el :
+				$el.parents( 'th, td' ).filter( ':first' );
+		},
+
+		// nextSort (optional), lets you disable next sort text
+		setColumnAriaLabel : function( c, $header, nextSort ) {
+			if ( $header.length ) {
+				var $th = ts.getHeaderCell( $header ),
+					// data-column always stored on the th/td
+					column = parseInt( $th.attr( 'data-column' ), 10 ),
+					vars = c.sortVars[ column ],
+					tmp = $header.hasClass( ts.css.sortAsc ) ?
+						'sortAsc' :
+						$header.hasClass( ts.css.sortDesc ) ? 'sortDesc' : 'sortNone',
+					txt = $.trim( $header.text() ) + ': ' + ts.language[ tmp ];
+				if ( $header.hasClass( 'sorter-false' ) || nextSort === false ) {
+					txt += ts.language.sortDisabled;
+				} else {
+					tmp = ( vars.count + 1 ) % vars.order.length;
+					nextSort = vars.order[ tmp ];
+					// if nextSort
+					txt += ts.language[ nextSort === 0 ? 'nextAsc' : nextSort === 1 ? 'nextDesc' : 'nextNone' ];
+				}
+				$header.attr( 'aria-label', txt );
+			}
+		},
+
+		updateHeader : function( c ) {
+			var index, isDisabled, $header, col,
+				table = c.table,
+				len = c.$headers.length;
+			for ( index = 0; index < len; index++ ) {
+				$header = c.$headers.eq( index );
+				col = ts.getColumnData( table, c.headers, index, true );
+				// add 'sorter-false' class if 'parser-false' is set
+				isDisabled = ts.getData( $header, col, 'sorter' ) === 'false' || ts.getData( $header, col, 'parser' ) === 'false';
+				ts.setColumnSort( c, $header, isDisabled );
+			}
+		},
+
+		setColumnSort : function( c, $header, isDisabled ) {
+			var id = c.table.id;
+			$header[ 0 ].sortDisabled = isDisabled;
+			$header[ isDisabled ? 'addClass' : 'removeClass' ]( 'sorter-false' )
+				.attr( 'aria-disabled', '' + isDisabled );
+			// disable tab index on disabled cells
+			if ( c.tabIndex ) {
+				if ( isDisabled ) {
+					$header.removeAttr( 'tabindex' );
+				} else {
+					$header.attr( 'tabindex', '0' );
+				}
+			}
+			// aria-controls - requires table ID
+			if ( id ) {
+				if ( isDisabled ) {
+					$header.removeAttr( 'aria-controls' );
+				} else {
+					$header.attr( 'aria-controls', id );
+				}
+			}
+		},
+
+		updateHeaderSortCount : function( c, list ) {
+			var col, dir, group, indx, primary, temp, val, order,
+				sortList = list || c.sortList,
+				len = sortList.length;
+			c.sortList = [];
+			for ( indx = 0; indx < len; indx++ ) {
+				val = sortList[ indx ];
+				// ensure all sortList values are numeric - fixes #127
+				col = parseInt( val[ 0 ], 10 );
+				// prevents error if sorton array is wrong
+				if ( col < c.columns ) {
+
+					// set order if not already defined - due to colspan header without associated header cell
+					// adding this check prevents a javascript error
+					if ( !c.sortVars[ col ].order ) {
+						if ( ts.getOrder( c.sortInitialOrder ) ) {
+							order = c.sortReset ? [ 1, 0, 2 ] : [ 1, 0 ];
+						} else {
+							order = c.sortReset ? [ 0, 1, 2 ] : [ 0, 1 ];
+						}
+						c.sortVars[ col ].order = order;
+						c.sortVars[ col ].count = 0;
+					}
+
+					order = c.sortVars[ col ].order;
+					dir = ( '' + val[ 1 ] ).match( /^(1|d|s|o|n)/ );
+					dir = dir ? dir[ 0 ] : '';
+					// 0/(a)sc (default), 1/(d)esc, (s)ame, (o)pposite, (n)ext
+					switch ( dir ) {
+						case '1' : case 'd' : // descending
+							dir = 1;
+							break;
+						case 's' : // same direction (as primary column)
+							// if primary sort is set to 's', make it ascending
+							dir = primary || 0;
+							break;
+						case 'o' :
+							temp = order[ ( primary || 0 ) % order.length ];
+							// opposite of primary column; but resets if primary resets
+							dir = temp === 0 ? 1 : temp === 1 ? 0 : 2;
+							break;
+						case 'n' :
+							dir = order[ ( ++c.sortVars[ col ].count ) % order.length ];
+							break;
+						default : // ascending
+							dir = 0;
+							break;
+					}
+					primary = indx === 0 ? dir : primary;
+					group = [ col, parseInt( dir, 10 ) || 0 ];
+					c.sortList[ c.sortList.length ] = group;
+					dir = $.inArray( group[ 1 ], order ); // fixes issue #167
+					c.sortVars[ col ].count = dir >= 0 ? dir : group[ 1 ] % order.length;
+				}
+			}
+		},
+
+		updateAll : function( c, resort, callback ) {
+			var table = c.table;
+			table.isUpdating = true;
+			ts.refreshWidgets( table, true, true );
+			ts.buildHeaders( c );
+			ts.bindEvents( table, c.$headers, true );
+			ts.bindMethods( c );
+			ts.commonUpdate( c, resort, callback );
+		},
+
+		update : function( c, resort, callback ) {
+			var table = c.table;
+			table.isUpdating = true;
+			// update sorting (if enabled/disabled)
+			ts.updateHeader( c );
+			ts.commonUpdate( c, resort, callback );
+		},
+
+		// simple header update - see #989
+		updateHeaders : function( c, callback ) {
+			c.table.isUpdating = true;
+			ts.buildHeaders( c );
+			ts.bindEvents( c.table, c.$headers, true );
+			ts.resortComplete( c, callback );
+		},
+
+		updateCell : function( c, cell, resort, callback ) {
+			// updateCell for child rows is a mess - we'll ignore them for now
+			// eventually I'll break out the "update" row cache code to make everything consistent
+			if ( $( cell ).closest( 'tr' ).hasClass( c.cssChildRow ) ) {
+				console.warn('Tablesorter Warning! "updateCell" for child row content has been disabled, use "update" instead');
+				return;
+			}
+			if ( ts.isEmptyObject( c.cache ) ) {
+				// empty table, do an update instead - fixes #1099
+				ts.updateHeader( c );
+				ts.commonUpdate( c, resort, callback );
+				return;
+			}
+			c.table.isUpdating = true;
+			c.$table.find( c.selectorRemove ).remove();
+			// get position from the dom
+			var tmp, indx, row, icell, cache, len,
+				$tbodies = c.$tbodies,
+				$cell = $( cell ),
+				// update cache - format: function( s, table, cell, cellIndex )
+				// no closest in jQuery v1.2.6
+				tbodyIndex = $tbodies.index( ts.getClosest( $cell, 'tbody' ) ),
+				tbcache = c.cache[ tbodyIndex ],
+				$row = ts.getClosest( $cell, 'tr' );
+			cell = $cell[ 0 ]; // in case cell is a jQuery object
+			// tbody may not exist if update is initialized while tbody is removed for processing
+			if ( $tbodies.length && tbodyIndex >= 0 ) {
+				row = $tbodies.eq( tbodyIndex ).find( 'tr' ).not( '.' + c.cssChildRow ).index( $row );
+				cache = tbcache.normalized[ row ];
+				len = $row[ 0 ].cells.length;
+				if ( len !== c.columns ) {
+					// colspan in here somewhere!
+					icell = 0;
+					tmp = false;
+					for ( indx = 0; indx < len; indx++ ) {
+						if ( !tmp && $row[ 0 ].cells[ indx ] !== cell ) {
+							icell += $row[ 0 ].cells[ indx ].colSpan;
+						} else {
+							tmp = true;
+						}
+					}
+				} else {
+					icell = $cell.index();
+				}
+				tmp = ts.getElementText( c, cell, icell ); // raw
+				cache[ c.columns ].raw[ icell ] = tmp;
+				tmp = ts.getParsedText( c, cell, icell, tmp );
+				cache[ icell ] = tmp; // parsed
+				if ( ( c.parsers[ icell ].type || '' ).toLowerCase() === 'numeric' ) {
+					// update column max value (ignore sign)
+					tbcache.colMax[ icell ] = Math.max( Math.abs( tmp ) || 0, tbcache.colMax[ icell ] || 0 );
+				}
+				tmp = resort !== 'undefined' ? resort : c.resort;
+				if ( tmp !== false ) {
+					// widgets will be reapplied
+					ts.checkResort( c, tmp, callback );
+				} else {
+					// don't reapply widgets is resort is false, just in case it causes
+					// problems with element focus
+					ts.resortComplete( c, callback );
+				}
+			} else {
+				if ( c.debug ) {
+					console.error( 'updateCell aborted, tbody missing or not within the indicated table' );
+				}
+				c.table.isUpdating = false;
+			}
+		},
+
+		addRows : function( c, $row, resort, callback ) {
+			var txt, val, tbodyIndex, rowIndex, rows, cellIndex, len, order,
+				cacheIndex, rowData, cells, cell, span,
+				// allow passing a row string if only one non-info tbody exists in the table
+				valid = typeof $row === 'string' && c.$tbodies.length === 1 && /<tr/.test( $row || '' ),
+				table = c.table;
+			if ( valid ) {
+				$row = $( $row );
+				c.$tbodies.append( $row );
+			} else if (
+				!$row ||
+				// row is a jQuery object?
+				!( $row instanceof jQuery ) ||
+				// row contained in the table?
+				( ts.getClosest( $row, 'table' )[ 0 ] !== c.table )
+			) {
+				if ( c.debug ) {
+					console.error( 'addRows method requires (1) a jQuery selector reference to rows that have already ' +
+						'been added to the table, or (2) row HTML string to be added to a table with only one tbody' );
+				}
+				return false;
+			}
+			table.isUpdating = true;
+			if ( ts.isEmptyObject( c.cache ) ) {
+				// empty table, do an update instead - fixes #450
+				ts.updateHeader( c );
+				ts.commonUpdate( c, resort, callback );
+			} else {
+				rows = $row.filter( 'tr' ).attr( 'role', 'row' ).length;
+				tbodyIndex = c.$tbodies.index( $row.parents( 'tbody' ).filter( ':first' ) );
+				// fixes adding rows to an empty table - see issue #179
+				if ( !( c.parsers && c.parsers.length ) ) {
+					ts.setupParsers( c );
+				}
+				// add each row
+				for ( rowIndex = 0; rowIndex < rows; rowIndex++ ) {
+					cacheIndex = 0;
+					len = $row[ rowIndex ].cells.length;
+					order = c.cache[ tbodyIndex ].normalized.length;
+					cells = [];
+					rowData = {
+						child : [],
+						raw : [],
+						$row : $row.eq( rowIndex ),
+						order : order
+					};
+					// add each cell
+					for ( cellIndex = 0; cellIndex < len; cellIndex++ ) {
+						cell = $row[ rowIndex ].cells[ cellIndex ];
+						txt = ts.getElementText( c, cell, cacheIndex );
+						rowData.raw[ cacheIndex ] = txt;
+						val = ts.getParsedText( c, cell, cacheIndex, txt );
+						cells[ cacheIndex ] = val;
+						if ( ( c.parsers[ cacheIndex ].type || '' ).toLowerCase() === 'numeric' ) {
+							// update column max value (ignore sign)
+							c.cache[ tbodyIndex ].colMax[ cacheIndex ] =
+								Math.max( Math.abs( val ) || 0, c.cache[ tbodyIndex ].colMax[ cacheIndex ] || 0 );
+						}
+						span = cell.colSpan - 1;
+						if ( span > 0 ) {
+							cacheIndex += span;
+						}
+						cacheIndex++;
+					}
+					// add the row data to the end
+					cells[ c.columns ] = rowData;
+					// update cache
+					c.cache[ tbodyIndex ].normalized[ order ] = cells;
+				}
+				// resort using current settings
+				ts.checkResort( c, resort, callback );
+			}
+		},
+
+		updateCache : function( c, callback, $tbodies ) {
+			// rebuild parsers
+			if ( !( c.parsers && c.parsers.length ) ) {
+				ts.setupParsers( c, $tbodies );
+			}
+			// rebuild the cache map
+			ts.buildCache( c, callback, $tbodies );
+		},
+
+		// init flag (true) used by pager plugin to prevent widget application
+		// renamed from appendToTable
+		appendCache : function( c, init ) {
+			var parsed, totalRows, $tbody, $curTbody, rowIndex, tbodyIndex, appendTime,
+				table = c.table,
+				wo = c.widgetOptions,
+				$tbodies = c.$tbodies,
+				rows = [],
+				cache = c.cache;
+			// empty table - fixes #206/#346
+			if ( ts.isEmptyObject( cache ) ) {
+				// run pager appender in case the table was just emptied
+				return c.appender ? c.appender( table, rows ) :
+					table.isUpdating ? c.$table.triggerHandler( 'updateComplete', table ) : ''; // Fixes #532
+			}
+			if ( c.debug ) {
+				appendTime = new Date();
+			}
+			for ( tbodyIndex = 0; tbodyIndex < $tbodies.length; tbodyIndex++ ) {
+				$tbody = $tbodies.eq( tbodyIndex );
+				if ( $tbody.length ) {
+					// detach tbody for manipulation
+					$curTbody = ts.processTbody( table, $tbody, true );
+					parsed = cache[ tbodyIndex ].normalized;
+					totalRows = parsed.length;
+					for ( rowIndex = 0; rowIndex < totalRows; rowIndex++ ) {
+						rows[rows.length] = parsed[ rowIndex ][ c.columns ].$row;
+						// removeRows used by the pager plugin; don't render if using ajax - fixes #411
+						if ( !c.appender || ( c.pager && ( !c.pager.removeRows || !wo.pager_removeRows ) && !c.pager.ajax ) ) {
+							$curTbody.append( parsed[ rowIndex ][ c.columns ].$row );
+						}
+					}
+					// restore tbody
+					ts.processTbody( table, $curTbody, false );
+				}
+			}
+			if ( c.appender ) {
+				c.appender( table, rows );
+			}
+			if ( c.debug ) {
+				console.log( 'Rebuilt table' + ts.benchmark( appendTime ) );
+			}
+			// apply table widgets; but not before ajax completes
+			if ( !init && !c.appender ) {
+				ts.applyWidget( table );
+			}
+			if ( table.isUpdating ) {
+				c.$table.triggerHandler( 'updateComplete', table );
+			}
+		},
+
+		commonUpdate : function( c, resort, callback ) {
+			// remove rows/elements before update
+			c.$table.find( c.selectorRemove ).remove();
+			// rebuild parsers
+			ts.setupParsers( c );
+			// rebuild the cache map
+			ts.buildCache( c );
+			ts.checkResort( c, resort, callback );
+		},
+
+		/*
+		▄█████ ▄████▄ █████▄ ██████ ██ █████▄ ▄████▄
+		▀█▄    ██  ██ ██▄▄██   ██   ██ ██  ██ ██ ▄▄▄
+		   ▀█▄ ██  ██ ██▀██    ██   ██ ██  ██ ██ ▀██
+		█████▀ ▀████▀ ██  ██   ██   ██ ██  ██ ▀████▀
+		*/
+		initSort : function( c, cell, event ) {
+			if ( c.table.isUpdating ) {
+				// let any updates complete before initializing a sort
+				return setTimeout( function(){
+					ts.initSort( c, cell, event );
+				}, 50 );
+			}
+
+			var arry, indx, headerIndx, dir, temp, tmp, $header,
+				notMultiSort = !event[ c.sortMultiSortKey ],
+				table = c.table,
+				len = c.$headers.length,
+				// get current column index; *always* stored on th/td
+				$th = ts.getHeaderCell( $( cell ) ),
+				col = parseInt( $th.attr( 'data-column' ), 10 ),
+				order = c.sortVars[ col ].order;
+			// Only call sortStart if sorting is enabled
+			c.$table.triggerHandler( 'sortStart', table );
+			// get current column sort order
+			tmp = ( c.sortVars[ col ].count + 1 ) % order.length;
+			c.sortVars[ col ].count = event[ c.sortResetKey ] ? 2 : tmp;
+			// reset all sorts on non-current column - issue #30
+			if ( c.sortRestart ) {
+				for ( headerIndx = 0; headerIndx < len; headerIndx++ ) {
+					$header = c.$headers.eq( headerIndx );
+					tmp = parseInt( $header.attr( 'data-column' ), 10 );
+					// only reset counts on columns that weren't just clicked on and if not included in a multisort
+					if ( col !== tmp && ( notMultiSort || $header.hasClass( ts.css.sortNone ) ) ) {
+						c.sortVars[ tmp ].count = -1;
+					}
+				}
+			}
+			// user only wants to sort on one column
+			if ( notMultiSort ) {
+				// flush the sort list
+				c.sortList = [];
+				c.last.sortList = [];
+				if ( c.sortForce !== null ) {
+					arry = c.sortForce;
+					for ( indx = 0; indx < arry.length; indx++ ) {
+						if ( arry[ indx ][ 0 ] !== col ) {
+							c.sortList[ c.sortList.length ] = arry[ indx ];
+						}
+					}
+				}
+				// add column to sort list
+				dir = order[ c.sortVars[ col ].count ];
+				if ( dir < 2 ) {
+					c.sortList[ c.sortList.length ] = [ col, dir ];
+					// add other columns if header spans across multiple
+					if ( cell.colSpan > 1 ) {
+						for ( indx = 1; indx < cell.colSpan; indx++ ) {
+							c.sortList[ c.sortList.length ] = [ col + indx, dir ];
+							// update count on columns in colSpan
+							c.sortVars[ col + indx ].count = $.inArray( dir, order );
+						}
+					}
+				}
+				// multi column sorting
+			} else {
+				// get rid of the sortAppend before adding more - fixes issue #115 & #523
+				c.sortList = $.extend( [], c.last.sortList );
+
+				// the user has clicked on an already sorted column
+				if ( ts.isValueInArray( col, c.sortList ) >= 0 ) {
+					// reverse the sorting direction
+					for ( indx = 0; indx < c.sortList.length; indx++ ) {
+						tmp = c.sortList[ indx ];
+						if ( tmp[ 0 ] === col ) {
+							// order.count seems to be incorrect when compared to cell.count
+							tmp[ 1 ] = order[ c.sortVars[ col ].count ];
+							if ( tmp[1] === 2 ) {
+								c.sortList.splice( indx, 1 );
+								c.sortVars[ col ].count = -1;
+							}
+						}
+					}
+				} else {
+					// add column to sort list array
+					dir = order[ c.sortVars[ col ].count ];
+					if ( dir < 2 ) {
+						c.sortList[ c.sortList.length ] = [ col, dir ];
+						// add other columns if header spans across multiple
+						if ( cell.colSpan > 1 ) {
+							for ( indx = 1; indx < cell.colSpan; indx++ ) {
+								c.sortList[ c.sortList.length ] = [ col + indx, dir ];
+								// update count on columns in colSpan
+								c.sortVars[ col + indx ].count = $.inArray( dir, order );
+							}
+						}
+					}
+				}
+			}
+			// save sort before applying sortAppend
+			c.last.sortList = $.extend( [], c.sortList );
+			if ( c.sortList.length && c.sortAppend ) {
+				arry = $.isArray( c.sortAppend ) ? c.sortAppend : c.sortAppend[ c.sortList[ 0 ][ 0 ] ];
+				if ( !ts.isEmptyObject( arry ) ) {
+					for ( indx = 0; indx < arry.length; indx++ ) {
+						if ( arry[ indx ][ 0 ] !== col && ts.isValueInArray( arry[ indx ][ 0 ], c.sortList ) < 0 ) {
+							dir = arry[ indx ][ 1 ];
+							temp = ( '' + dir ).match( /^(a|d|s|o|n)/ );
+							if ( temp ) {
+								tmp = c.sortList[ 0 ][ 1 ];
+								switch ( temp[ 0 ] ) {
+									case 'd' :
+										dir = 1;
+										break;
+									case 's' :
+										dir = tmp;
+										break;
+									case 'o' :
+										dir = tmp === 0 ? 1 : 0;
+										break;
+									case 'n' :
+										dir = ( tmp + 1 ) % order.length;
+										break;
+									default:
+										dir = 0;
+										break;
+								}
+							}
+							c.sortList[ c.sortList.length ] = [ arry[ indx ][ 0 ], dir ];
+						}
+					}
+				}
+			}
+			// sortBegin event triggered immediately before the sort
+			c.$table.triggerHandler( 'sortBegin', table );
+			// setTimeout needed so the processing icon shows up
+			setTimeout( function() {
+				// set css for headers
+				ts.setHeadersCss( c );
+				ts.multisort( c );
+				ts.appendCache( c );
+				c.$table.triggerHandler( 'sortBeforeEnd', table );
+				c.$table.triggerHandler( 'sortEnd', table );
+			}, 1 );
+		},
+
+		// sort multiple columns
+		multisort : function( c ) { /*jshint loopfunc:true */
+			var tbodyIndex, sortTime, colMax, rows, tmp,
+				table = c.table,
+				sorter = [],
+				dir = 0,
+				textSorter = c.textSorter || '',
+				sortList = c.sortList,
+				sortLen = sortList.length,
+				len = c.$tbodies.length;
+			if ( c.serverSideSorting || ts.isEmptyObject( c.cache ) ) {
+				// empty table - fixes #206/#346
+				return;
+			}
+			if ( c.debug ) { sortTime = new Date(); }
+			// cache textSorter to optimize speed
+			if ( typeof textSorter === 'object' ) {
+				colMax = c.columns;
+				while ( colMax-- ) {
+					tmp = ts.getColumnData( table, textSorter, colMax );
+					if ( typeof tmp === 'function' ) {
+						sorter[ colMax ] = tmp;
+					}
+				}
+			}
+			for ( tbodyIndex = 0; tbodyIndex < len; tbodyIndex++ ) {
+				colMax = c.cache[ tbodyIndex ].colMax;
+				rows = c.cache[ tbodyIndex ].normalized;
+
+				rows.sort( function( a, b ) {
+					var sortIndex, num, col, order, sort, x, y;
+					// rows is undefined here in IE, so don't use it!
+					for ( sortIndex = 0; sortIndex < sortLen; sortIndex++ ) {
+						col = sortList[ sortIndex ][ 0 ];
+						order = sortList[ sortIndex ][ 1 ];
+						// sort direction, true = asc, false = desc
+						dir = order === 0;
+
+						if ( c.sortStable && a[ col ] === b[ col ] && sortLen === 1 ) {
+							return a[ c.columns ].order - b[ c.columns ].order;
+						}
+
+						// fallback to natural sort since it is more robust
+						num = /n/i.test( ts.getSortType( c.parsers, col ) );
+						if ( num && c.strings[ col ] ) {
+							// sort strings in numerical columns
+							if ( typeof ( ts.string[ c.strings[ col ] ] ) === 'boolean' ) {
+								num = ( dir ? 1 : -1 ) * ( ts.string[ c.strings[ col ] ] ? -1 : 1 );
+							} else {
+								num = ( c.strings[ col ] ) ? ts.string[ c.strings[ col ] ] || 0 : 0;
+							}
+							// fall back to built-in numeric sort
+							// var sort = $.tablesorter['sort' + s]( a[col], b[col], dir, colMax[col], table );
+							sort = c.numberSorter ? c.numberSorter( a[ col ], b[ col ], dir, colMax[ col ], table ) :
+								ts[ 'sortNumeric' + ( dir ? 'Asc' : 'Desc' ) ]( a[ col ], b[ col ], num, colMax[ col ], col, c );
+						} else {
+							// set a & b depending on sort direction
+							x = dir ? a : b;
+							y = dir ? b : a;
+							// text sort function
+							if ( typeof textSorter === 'function' ) {
+								// custom OVERALL text sorter
+								sort = textSorter( x[ col ], y[ col ], dir, col, table );
+							} else if ( typeof sorter[ col ] === 'function' ) {
+								// custom text sorter for a SPECIFIC COLUMN
+								sort = sorter[ col ]( x[ col ], y[ col ], dir, col, table );
+							} else {
+								// fall back to natural sort
+								sort = ts[ 'sortNatural' + ( dir ? 'Asc' : 'Desc' ) ]( a[ col ], b[ col ], col, c );
+							}
+						}
+						if ( sort ) { return sort; }
+					}
+					return a[ c.columns ].order - b[ c.columns ].order;
+				});
+			}
+			if ( c.debug ) {
+				console.log( 'Applying sort ' + sortList.toString() + ts.benchmark( sortTime ) );
+			}
+		},
+
+		resortComplete : function( c, callback ) {
+			if ( c.table.isUpdating ) {
+				c.$table.triggerHandler( 'updateComplete', c.table );
+			}
+			if ( $.isFunction( callback ) ) {
+				callback( c.table );
+			}
+		},
+
+		checkResort : function( c, resort, callback ) {
+			var sortList = $.isArray( resort ) ? resort : c.sortList,
+				// if no resort parameter is passed, fallback to config.resort (true by default)
+				resrt = typeof resort === 'undefined' ? c.resort : resort;
+			// don't try to resort if the table is still processing
+			// this will catch spamming of the updateCell method
+			if ( resrt !== false && !c.serverSideSorting && !c.table.isProcessing ) {
+				if ( sortList.length ) {
+					ts.sortOn( c, sortList, function() {
+						ts.resortComplete( c, callback );
+					}, true );
+				} else {
+					ts.sortReset( c, function() {
+						ts.resortComplete( c, callback );
+						ts.applyWidget( c.table, false );
+					} );
+				}
+			} else {
+				ts.resortComplete( c, callback );
+				ts.applyWidget( c.table, false );
+			}
+		},
+
+		sortOn : function( c, list, callback, init ) {
+			var table = c.table;
+			c.$table.triggerHandler( 'sortStart', table );
+			// update header count index
+			ts.updateHeaderSortCount( c, list );
+			// set css for headers
+			ts.setHeadersCss( c );
+			// fixes #346
+			if ( c.delayInit && ts.isEmptyObject( c.cache ) ) {
+				ts.buildCache( c );
+			}
+			c.$table.triggerHandler( 'sortBegin', table );
+			// sort the table and append it to the dom
+			ts.multisort( c );
+			ts.appendCache( c, init );
+			c.$table.triggerHandler( 'sortBeforeEnd', table );
+			c.$table.triggerHandler( 'sortEnd', table );
+			ts.applyWidget( table );
+			if ( $.isFunction( callback ) ) {
+				callback( table );
+			}
+		},
+
+		sortReset : function( c, callback ) {
+			c.sortList = [];
+			ts.setHeadersCss( c );
+			ts.multisort( c );
+			ts.appendCache( c );
+			var indx;
+			for (indx = 0; indx < c.columns; indx++) {
+				c.sortVars[ indx ].count = -1;
+			}
+			if ( $.isFunction( callback ) ) {
+				callback( c.table );
+			}
+		},
+
+		getSortType : function( parsers, column ) {
+			return ( parsers && parsers[ column ] ) ? parsers[ column ].type || '' : '';
+		},
+
+		getOrder : function( val ) {
+			// look for 'd' in 'desc' order; return true
+			return ( /^d/i.test( val ) || val === 1 );
+		},
+
+		// Natural sort - https://github.com/overset/javascript-natural-sort (date sorting removed)
+		sortNatural : function( a, b ) {
+			if ( a === b ) { return 0; }
+			a = a.toString();
+			b = b.toString();
+			var aNum, bNum, aFloat, bFloat, indx, max,
+				regex = ts.regex;
+			// first try and sort Hex codes
+			if ( regex.hex.test( b ) ) {
+				aNum = parseInt( ( a || '' ).match( regex.hex ), 16 );
+				bNum = parseInt( ( b || '' ).match( regex.hex ), 16 );
+				if ( aNum < bNum ) { return -1; }
+				if ( aNum > bNum ) { return 1; }
+			}
+			// chunk/tokenize
+			aNum = ( a || '' ).replace( regex.chunk, '\\0$1\\0' ).replace( regex.chunks, '' ).split( '\\0' );
+			bNum = ( b || '' ).replace( regex.chunk, '\\0$1\\0' ).replace( regex.chunks, '' ).split( '\\0' );
+			max = Math.max( aNum.length, bNum.length );
+			// natural sorting through split numeric strings and default strings
+			for ( indx = 0; indx < max; indx++ ) {
+				// find floats not starting with '0', string or 0 if not defined
+				aFloat = isNaN( aNum[ indx ] ) ? aNum[ indx ] || 0 : parseFloat( aNum[ indx ] ) || 0;
+				bFloat = isNaN( bNum[ indx ] ) ? bNum[ indx ] || 0 : parseFloat( bNum[ indx ] ) || 0;
+				// handle numeric vs string comparison - number < string - (Kyle Adams)
+				if ( isNaN( aFloat ) !== isNaN( bFloat ) ) { return isNaN( aFloat ) ? 1 : -1; }
+				// rely on string comparison if different types - i.e. '02' < 2 != '02' < '2'
+				if ( typeof aFloat !== typeof bFloat ) {
+					aFloat += '';
+					bFloat += '';
+				}
+				if ( aFloat < bFloat ) { return -1; }
+				if ( aFloat > bFloat ) { return 1; }
+			}
+			return 0;
+		},
+
+		sortNaturalAsc : function( a, b, col, c ) {
+			if ( a === b ) { return 0; }
+			var empty = ts.string[ ( c.empties[ col ] || c.emptyTo ) ];
+			if ( a === '' && empty !== 0 ) { return typeof empty === 'boolean' ? ( empty ? -1 : 1 ) : -empty || -1; }
+			if ( b === '' && empty !== 0 ) { return typeof empty === 'boolean' ? ( empty ? 1 : -1 ) : empty || 1; }
+			return ts.sortNatural( a, b );
+		},
+
+		sortNaturalDesc : function( a, b, col, c ) {
+			if ( a === b ) { return 0; }
+			var empty = ts.string[ ( c.empties[ col ] || c.emptyTo ) ];
+			if ( a === '' && empty !== 0 ) { return typeof empty === 'boolean' ? ( empty ? -1 : 1 ) : empty || 1; }
+			if ( b === '' && empty !== 0 ) { return typeof empty === 'boolean' ? ( empty ? 1 : -1 ) : -empty || -1; }
+			return ts.sortNatural( b, a );
+		},
+
+		// basic alphabetical sort
+		sortText : function( a, b ) {
+			return a > b ? 1 : ( a < b ? -1 : 0 );
+		},
+
+		// return text string value by adding up ascii value
+		// so the text is somewhat sorted when using a digital sort
+		// this is NOT an alphanumeric sort
+		getTextValue : function( val, num, max ) {
+			if ( max ) {
+				// make sure the text value is greater than the max numerical value (max)
+				var indx,
+					len = val ? val.length : 0,
+					n = max + num;
+				for ( indx = 0; indx < len; indx++ ) {
+					n += val.charCodeAt( indx );
+				}
+				return num * n;
+			}
+			return 0;
+		},
+
+		sortNumericAsc : function( a, b, num, max, col, c ) {
+			if ( a === b ) { return 0; }
+			var empty = ts.string[ ( c.empties[ col ] || c.emptyTo ) ];
+			if ( a === '' && empty !== 0 ) { return typeof empty === 'boolean' ? ( empty ? -1 : 1 ) : -empty || -1; }
+			if ( b === '' && empty !== 0 ) { return typeof empty === 'boolean' ? ( empty ? 1 : -1 ) : empty || 1; }
+			if ( isNaN( a ) ) { a = ts.getTextValue( a, num, max ); }
+			if ( isNaN( b ) ) { b = ts.getTextValue( b, num, max ); }
+			return a - b;
+		},
+
+		sortNumericDesc : function( a, b, num, max, col, c ) {
+			if ( a === b ) { return 0; }
+			var empty = ts.string[ ( c.empties[ col ] || c.emptyTo ) ];
+			if ( a === '' && empty !== 0 ) { return typeof empty === 'boolean' ? ( empty ? -1 : 1 ) : empty || 1; }
+			if ( b === '' && empty !== 0 ) { return typeof empty === 'boolean' ? ( empty ? 1 : -1 ) : -empty || -1; }
+			if ( isNaN( a ) ) { a = ts.getTextValue( a, num, max ); }
+			if ( isNaN( b ) ) { b = ts.getTextValue( b, num, max ); }
+			return b - a;
+		},
+
+		sortNumeric : function( a, b ) {
+			return a - b;
+		},
+
+		/*
+		██ ██ ██ ██ █████▄ ▄████▄ ██████ ██████ ▄█████
+		██ ██ ██ ██ ██  ██ ██ ▄▄▄ ██▄▄     ██   ▀█▄
+		██ ██ ██ ██ ██  ██ ██ ▀██ ██▀▀     ██      ▀█▄
+		███████▀ ██ █████▀ ▀████▀ ██████   ██   █████▀
+		*/
+		addWidget : function( widget ) {
+			if ( widget.id && !ts.isEmptyObject( ts.getWidgetById( widget.id ) ) ) {
+				console.warn( '"' + widget.id + '" widget was loaded more than once!' );
+			}
+			ts.widgets[ ts.widgets.length ] = widget;
+		},
+
+		hasWidget : function( $table, name ) {
+			$table = $( $table );
+			return $table.length && $table[ 0 ].config && $table[ 0 ].config.widgetInit[ name ] || false;
+		},
+
+		getWidgetById : function( name ) {
+			var indx, widget,
+				len = ts.widgets.length;
+			for ( indx = 0; indx < len; indx++ ) {
+				widget = ts.widgets[ indx ];
+				if ( widget && widget.id && widget.id.toLowerCase() === name.toLowerCase() ) {
+					return widget;
+				}
+			}
+		},
+
+		applyWidgetOptions : function( table ) {
+			var indx, widget, wo,
+				c = table.config,
+				len = c.widgets.length;
+			if ( len ) {
+				for ( indx = 0; indx < len; indx++ ) {
+					widget = ts.getWidgetById( c.widgets[ indx ] );
+					if ( widget && widget.options ) {
+						wo = $.extend( true, {}, widget.options );
+						c.widgetOptions = $.extend( true, wo, c.widgetOptions );
+						// add widgetOptions to defaults for option validator
+						$.extend( true, ts.defaults.widgetOptions, widget.options );
+					}
+				}
+			}
+		},
+
+		addWidgetFromClass : function( table ) {
+			var len, indx,
+				c = table.config,
+				// look for widgets to apply from table class
+				// don't match from 'ui-widget-content'; use \S instead of \w to include widgets
+				// with dashes in the name, e.g. "widget-test-2" extracts out "test-2"
+				regex = '^' + c.widgetClass.replace( ts.regex.templateName, '(\\S+)+' ) + '$',
+				widgetClass = new RegExp( regex, 'g' ),
+				// split up table class (widget id's can include dashes) - stop using match
+				// otherwise only one widget gets extracted, see #1109
+				widgets = ( table.className || '' ).split( ts.regex.spaces );
+			if ( widgets.length ) {
+				len = widgets.length;
+				for ( indx = 0; indx < len; indx++ ) {
+					if ( widgets[ indx ].match( widgetClass ) ) {
+						c.widgets[ c.widgets.length ] = widgets[ indx ].replace( widgetClass, '$1' );
+					}
+				}
+			}
+		},
+
+		applyWidgetId : function( table, id, init ) {
+			table = $(table)[0];
+			var applied, time, name,
+				c = table.config,
+				wo = c.widgetOptions,
+				widget = ts.getWidgetById( id );
+			if ( widget ) {
+				name = widget.id;
+				applied = false;
+				// add widget name to option list so it gets reapplied after sorting, filtering, etc
+				if ( $.inArray( name, c.widgets ) < 0 ) {
+					c.widgets[ c.widgets.length ] = name;
+				}
+				if ( c.debug ) { time = new Date(); }
+
+				if ( init || !( c.widgetInit[ name ] ) ) {
+					// set init flag first to prevent calling init more than once (e.g. pager)
+					c.widgetInit[ name ] = true;
+					if ( table.hasInitialized ) {
+						// don't reapply widget options on tablesorter init
+						ts.applyWidgetOptions( table );
+					}
+					if ( typeof widget.init === 'function' ) {
+						applied = true;
+						if ( c.debug ) {
+							console[ console.group ? 'group' : 'log' ]( 'Initializing ' + name + ' widget' );
+						}
+						widget.init( table, widget, c, wo );
+					}
+				}
+				if ( !init && typeof widget.format === 'function' ) {
+					applied = true;
+					if ( c.debug ) {
+						console[ console.group ? 'group' : 'log' ]( 'Updating ' + name + ' widget' );
+					}
+					widget.format( table, c, wo, false );
+				}
+				if ( c.debug ) {
+					if ( applied ) {
+						console.log( 'Completed ' + ( init ? 'initializing ' : 'applying ' ) + name + ' widget' + ts.benchmark( time ) );
+						if ( console.groupEnd ) { console.groupEnd(); }
+					}
+				}
+			}
+		},
+
+		applyWidget : function( table, init, callback ) {
+			table = $( table )[ 0 ]; // in case this is called externally
+			var indx, len, names, widget, time,
+				c = table.config,
+				widgets = [];
+			// prevent numerous consecutive widget applications
+			if ( init !== false && table.hasInitialized && ( table.isApplyingWidgets || table.isUpdating ) ) {
+				return;
+			}
+			if ( c.debug ) { time = new Date(); }
+			ts.addWidgetFromClass( table );
+			// prevent "tablesorter-ready" from firing multiple times in a row
+			clearTimeout( c.timerReady );
+			if ( c.widgets.length ) {
+				table.isApplyingWidgets = true;
+				// ensure unique widget ids
+				c.widgets = $.grep( c.widgets, function( val, index ) {
+					return $.inArray( val, c.widgets ) === index;
+				});
+				names = c.widgets || [];
+				len = names.length;
+				// build widget array & add priority as needed
+				for ( indx = 0; indx < len; indx++ ) {
+					widget = ts.getWidgetById( names[ indx ] );
+					if ( widget && widget.id ) {
+						// set priority to 10 if not defined
+						if ( !widget.priority ) { widget.priority = 10; }
+						widgets[ indx ] = widget;
+					} else if ( c.debug ) {
+						console.warn( '"' + names[ indx ] + '" was enabled, but the widget code has not been loaded!' );
+					}
+				}
+				// sort widgets by priority
+				widgets.sort( function( a, b ) {
+					return a.priority < b.priority ? -1 : a.priority === b.priority ? 0 : 1;
+				});
+				// add/update selected widgets
+				len = widgets.length;
+				if ( c.debug ) {
+					console[ console.group ? 'group' : 'log' ]( 'Start ' + ( init ? 'initializing' : 'applying' ) + ' widgets' );
+				}
+				for ( indx = 0; indx < len; indx++ ) {
+					widget = widgets[ indx ];
+					if ( widget && widget.id ) {
+						ts.applyWidgetId( table, widget.id, init );
+					}
+				}
+				if ( c.debug && console.groupEnd ) { console.groupEnd(); }
+			}
+			c.timerReady = setTimeout( function() {
+				table.isApplyingWidgets = false;
+				$.data( table, 'lastWidgetApplication', new Date() );
+				c.$table.triggerHandler( 'tablesorter-ready' );
+				// callback executed on init only
+				if ( !init && typeof callback === 'function' ) {
+					callback( table );
+				}
+				if ( c.debug ) {
+					widget = c.widgets.length;
+					console.log( 'Completed ' +
+						( init === true ? 'initializing ' : 'applying ' ) + widget +
+						' widget' + ( widget !== 1 ? 's' : '' ) + ts.benchmark( time ) );
+				}
+			}, 10 );
+		},
+
+		removeWidget : function( table, name, refreshing ) {
+			table = $( table )[ 0 ];
+			var index, widget, indx, len,
+				c = table.config;
+			// if name === true, add all widgets from $.tablesorter.widgets
+			if ( name === true ) {
+				name = [];
+				len = ts.widgets.length;
+				for ( indx = 0; indx < len; indx++ ) {
+					widget = ts.widgets[ indx ];
+					if ( widget && widget.id ) {
+						name[ name.length ] = widget.id;
+					}
+				}
+			} else {
+				// name can be either an array of widgets names,
+				// or a space/comma separated list of widget names
+				name = ( $.isArray( name ) ? name.join( ',' ) : name || '' ).toLowerCase().split( /[\s,]+/ );
+			}
+			len = name.length;
+			for ( index = 0; index < len; index++ ) {
+				widget = ts.getWidgetById( name[ index ] );
+				indx = $.inArray( name[ index ], c.widgets );
+				// don't remove the widget from config.widget if refreshing
+				if ( indx >= 0 && refreshing !== true ) {
+					c.widgets.splice( indx, 1 );
+				}
+				if ( widget && widget.remove ) {
+					if ( c.debug ) {
+						console.log( ( refreshing ? 'Refreshing' : 'Removing' ) + ' "' + name[ index ] + '" widget' );
+					}
+					widget.remove( table, c, c.widgetOptions, refreshing );
+					c.widgetInit[ name[ index ] ] = false;
+				}
+			}
+			c.$table.triggerHandler( 'widgetRemoveEnd', table );
+		},
+
+		refreshWidgets : function( table, doAll, dontapply ) {
+			table = $( table )[ 0 ]; // see issue #243
+			var indx, widget,
+				c = table.config,
+				curWidgets = c.widgets,
+				widgets = ts.widgets,
+				len = widgets.length,
+				list = [],
+				callback = function( table ) {
+					$( table ).triggerHandler( 'refreshComplete' );
+				};
+			// remove widgets not defined in config.widgets, unless doAll is true
+			for ( indx = 0; indx < len; indx++ ) {
+				widget = widgets[ indx ];
+				if ( widget && widget.id && ( doAll || $.inArray( widget.id, curWidgets ) < 0 ) ) {
+					list[ list.length ] = widget.id;
+				}
+			}
+			ts.removeWidget( table, list.join( ',' ), true );
+			if ( dontapply !== true ) {
+				// call widget init if
+				ts.applyWidget( table, doAll || false, callback );
+				if ( doAll ) {
+					// apply widget format
+					ts.applyWidget( table, false, callback );
+				}
+			} else {
+				callback( table );
+			}
+		},
+
+		/*
+		██  ██ ██████ ██ ██     ██ ██████ ██ ██████ ▄█████
+		██  ██   ██   ██ ██     ██   ██   ██ ██▄▄   ▀█▄
+		██  ██   ██   ██ ██     ██   ██   ██ ██▀▀      ▀█▄
+		▀████▀   ██   ██ ██████ ██   ██   ██ ██████ █████▀
+		*/
+		benchmark : function( diff ) {
+			return ( ' (' + ( new Date().getTime() - diff.getTime() ) + ' ms)' );
+		},
+		// deprecated ts.log
+		log : function() {
+			console.log( arguments );
+		},
+
+		// $.isEmptyObject from jQuery v1.4
+		isEmptyObject : function( obj ) {
+			/*jshint forin: false */
+			for ( var name in obj ) {
+				return false;
+			}
+			return true;
+		},
+
+		isValueInArray : function( column, arry ) {
+			var indx,
+				len = arry && arry.length || 0;
+			for ( indx = 0; indx < len; indx++ ) {
+				if ( arry[ indx ][ 0 ] === column ) {
+					return indx;
+				}
+			}
+			return -1;
+		},
+
+		formatFloat : function( str, table ) {
+			if ( typeof str !== 'string' || str === '' ) { return str; }
+			// allow using formatFloat without a table; defaults to US number format
+			var num,
+				usFormat = table && table.config ? table.config.usNumberFormat !== false :
+					typeof table !== 'undefined' ? table : true;
+			if ( usFormat ) {
+				// US Format - 1,234,567.89 -> 1234567.89
+				str = str.replace( ts.regex.comma, '' );
+			} else {
+				// German Format = 1.234.567,89 -> 1234567.89
+				// French Format = 1 234 567,89 -> 1234567.89
+				str = str.replace( ts.regex.digitNonUS, '' ).replace( ts.regex.comma, '.' );
+			}
+			if ( ts.regex.digitNegativeTest.test( str ) ) {
+				// make (#) into a negative number -> (10) = -10
+				str = str.replace( ts.regex.digitNegativeReplace, '-$1' );
+			}
+			num = parseFloat( str );
+			// return the text instead of zero
+			return isNaN( num ) ? $.trim( str ) : num;
+		},
+
+		isDigit : function( str ) {
+			// replace all unwanted chars and match
+			return isNaN( str ) ?
+				ts.regex.digitTest.test( str.toString().replace( ts.regex.digitReplace, '' ) ) :
+				str !== '';
+		},
+
+		// computeTableHeaderCellIndexes from:
+		// http://www.javascripttoolbox.com/lib/table/examples.php
+		// http://www.javascripttoolbox.com/temp/table_cellindex.html
+		computeColumnIndex : function( $rows, c ) {
+			var i, j, k, l, cell, cells, rowIndex, rowSpan, colSpan, firstAvailCol,
+				// total columns has been calculated, use it to set the matrixrow
+				columns = c && c.columns || 0,
+				matrix = [],
+				matrixrow = new Array( columns );
+			for ( i = 0; i < $rows.length; i++ ) {
+				cells = $rows[ i ].cells;
+				for ( j = 0; j < cells.length; j++ ) {
+					cell = cells[ j ];
+					rowIndex = i;
+					rowSpan = cell.rowSpan || 1;
+					colSpan = cell.colSpan || 1;
+					if ( typeof matrix[ rowIndex ] === 'undefined' ) {
+						matrix[ rowIndex ] = [];
+					}
+					// Find first available column in the first row
+					for ( k = 0; k < matrix[ rowIndex ].length + 1; k++ ) {
+						if ( typeof matrix[ rowIndex ][ k ] === 'undefined' ) {
+							firstAvailCol = k;
+							break;
+						}
+					}
+					// jscs:disable disallowEmptyBlocks
+					if ( columns && cell.cellIndex === firstAvailCol ) {
+						// don't to anything
+					} else if ( cell.setAttribute ) {
+						// jscs:enable disallowEmptyBlocks
+						// add data-column (setAttribute = IE8+)
+						cell.setAttribute( 'data-column', firstAvailCol );
+					} else {
+						// remove once we drop support for IE7 - 1/12/2016
+						$( cell ).attr( 'data-column', firstAvailCol );
+					}
+					for ( k = rowIndex; k < rowIndex + rowSpan; k++ ) {
+						if ( typeof matrix[ k ] === 'undefined' ) {
+							matrix[ k ] = [];
+						}
+						matrixrow = matrix[ k ];
+						for ( l = firstAvailCol; l < firstAvailCol + colSpan; l++ ) {
+							matrixrow[ l ] = 'x';
+						}
+					}
+				}
+			}
+			ts.checkColumnCount($rows, matrix, matrixrow.length);
+			return matrixrow.length;
+		},
+
+		checkColumnCount : function($rows, matrix, columns) {
+			// this DOES NOT report any tbody column issues, except for the math and
+			// and column selector widgets
+			var i, len,
+				valid = true,
+				cells = [];
+			for ( i = 0; i < matrix.length; i++ ) {
+				// some matrix entries are undefined when testing the footer because
+				// it is using the rowIndex property
+				if ( matrix[i] ) {
+					len = matrix[i].length;
+					if ( matrix[i].length !== columns ) {
+						valid = false;
+						break;
+					}
+				}
+			}
+			if ( !valid ) {
+				$rows.each( function( indx, el ) {
+					var cell = el.parentElement.nodeName;
+					if ( cells.indexOf( cell ) < 0 ) {
+						cells.push( cell );
+					}
+				});
+				console.error(
+					'Invalid or incorrect number of columns in the ' +
+					cells.join( ' or ' ) + '; expected ' + columns +
+					', but found ' + len + ' columns'
+				);
+			}
+		},
+
+		// automatically add a colgroup with col elements set to a percentage width
+		fixColumnWidth : function( table ) {
+			table = $( table )[ 0 ];
+			var overallWidth, percent, $tbodies, len, index,
+				c = table.config,
+				$colgroup = c.$table.children( 'colgroup' );
+			// remove plugin-added colgroup, in case we need to refresh the widths
+			if ( $colgroup.length && $colgroup.hasClass( ts.css.colgroup ) ) {
+				$colgroup.remove();
+			}
+			if ( c.widthFixed && c.$table.children( 'colgroup' ).length === 0 ) {
+				$colgroup = $( '<colgroup class="' + ts.css.colgroup + '">' );
+				overallWidth = c.$table.width();
+				// only add col for visible columns - fixes #371
+				$tbodies = c.$tbodies.find( 'tr:first' ).children( ':visible' );
+				len = $tbodies.length;
+				for ( index = 0; index < len; index++ ) {
+					percent = parseInt( ( $tbodies.eq( index ).width() / overallWidth ) * 1000, 10 ) / 10 + '%';
+					$colgroup.append( $( '<col>' ).css( 'width', percent ) );
+				}
+				c.$table.prepend( $colgroup );
+			}
+		},
+
+		// get sorter, string, empty, etc options for each column from
+		// jQuery data, metadata, header option or header class name ('sorter-false')
+		// priority = jQuery data > meta > headers option > header class name
+		getData : function( header, configHeader, key ) {
+			var meta, cl4ss,
+				val = '',
+				$header = $( header );
+			if ( !$header.length ) { return ''; }
+			meta = $.metadata ? $header.metadata() : false;
+			cl4ss = ' ' + ( $header.attr( 'class' ) || '' );
+			if ( typeof $header.data( key ) !== 'undefined' ||
+				typeof $header.data( key.toLowerCase() ) !== 'undefined' ) {
+				// 'data-lockedOrder' is assigned to 'lockedorder'; but 'data-locked-order' is assigned to 'lockedOrder'
+				// 'data-sort-initial-order' is assigned to 'sortInitialOrder'
+				val += $header.data( key ) || $header.data( key.toLowerCase() );
+			} else if ( meta && typeof meta[ key ] !== 'undefined' ) {
+				val += meta[ key ];
+			} else if ( configHeader && typeof configHeader[ key ] !== 'undefined' ) {
+				val += configHeader[ key ];
+			} else if ( cl4ss !== ' ' && cl4ss.match( ' ' + key + '-' ) ) {
+				// include sorter class name 'sorter-text', etc; now works with 'sorter-my-custom-parser'
+				val = cl4ss.match( new RegExp( '\\s' + key + '-([\\w-]+)' ) )[ 1 ] || '';
+			}
+			return $.trim( val );
+		},
+
+		getColumnData : function( table, obj, indx, getCell, $headers ) {
+			if ( typeof obj !== 'object' || obj === null ) {
+				return obj;
+			}
+			table = $( table )[ 0 ];
+			var $header, key,
+				c = table.config,
+				$cells = ( $headers || c.$headers ),
+				// c.$headerIndexed is not defined initially
+				$cell = c.$headerIndexed && c.$headerIndexed[ indx ] ||
+					$cells.filter( '[data-column="' + indx + '"]:last' );
+			if ( typeof obj[ indx ] !== 'undefined' ) {
+				return getCell ? obj[ indx ] : obj[ $cells.index( $cell ) ];
+			}
+			for ( key in obj ) {
+				if ( typeof key === 'string' ) {
+					$header = $cell
+						// header cell with class/id
+						.filter( key )
+						// find elements within the header cell with cell/id
+						.add( $cell.find( key ) );
+					if ( $header.length ) {
+						return obj[ key ];
+					}
+				}
+			}
+			return;
+		},
+
+		// *** Process table ***
+		// add processing indicator
+		isProcessing : function( $table, toggle, $headers ) {
+			$table = $( $table );
+			var c = $table[ 0 ].config,
+				// default to all headers
+				$header = $headers || $table.find( '.' + ts.css.header );
+			if ( toggle ) {
+				// don't use sortList if custom $headers used
+				if ( typeof $headers !== 'undefined' && c.sortList.length > 0 ) {
+					// get headers from the sortList
+					$header = $header.filter( function() {
+						// get data-column from attr to keep compatibility with jQuery 1.2.6
+						return this.sortDisabled ?
+							false :
+							ts.isValueInArray( parseFloat( $( this ).attr( 'data-column' ) ), c.sortList ) >= 0;
+					});
+				}
+				$table.add( $header ).addClass( ts.css.processing + ' ' + c.cssProcessing );
+			} else {
+				$table.add( $header ).removeClass( ts.css.processing + ' ' + c.cssProcessing );
+			}
+		},
+
+		// detach tbody but save the position
+		// don't use tbody because there are portions that look for a tbody index (updateCell)
+		processTbody : function( table, $tb, getIt ) {
+			table = $( table )[ 0 ];
+			if ( getIt ) {
+				table.isProcessing = true;
+				$tb.before( '<colgroup class="tablesorter-savemyplace"/>' );
+				return $.fn.detach ? $tb.detach() : $tb.remove();
+			}
+			var holdr = $( table ).find( 'colgroup.tablesorter-savemyplace' );
+			$tb.insertAfter( holdr );
+			holdr.remove();
+			table.isProcessing = false;
+		},
+
+		clearTableBody : function( table ) {
+			$( table )[ 0 ].config.$tbodies.children().detach();
+		},
+
+		// used when replacing accented characters during sorting
+		characterEquivalents : {
+			'a' : '\u00e1\u00e0\u00e2\u00e3\u00e4\u0105\u00e5', // áàâãäąå
+			'A' : '\u00c1\u00c0\u00c2\u00c3\u00c4\u0104\u00c5', // ÁÀÂÃÄĄÅ
+			'c' : '\u00e7\u0107\u010d', // çćč
+			'C' : '\u00c7\u0106\u010c', // ÇĆČ
+			'e' : '\u00e9\u00e8\u00ea\u00eb\u011b\u0119', // éèêëěę
+			'E' : '\u00c9\u00c8\u00ca\u00cb\u011a\u0118', // ÉÈÊËĚĘ
+			'i' : '\u00ed\u00ec\u0130\u00ee\u00ef\u0131', // íìİîïı
+			'I' : '\u00cd\u00cc\u0130\u00ce\u00cf', // ÍÌİÎÏ
+			'o' : '\u00f3\u00f2\u00f4\u00f5\u00f6\u014d', // óòôõöō
+			'O' : '\u00d3\u00d2\u00d4\u00d5\u00d6\u014c', // ÓÒÔÕÖŌ
+			'ss': '\u00df', // ß (s sharp)
+			'SS': '\u1e9e', // ẞ (Capital sharp s)
+			'u' : '\u00fa\u00f9\u00fb\u00fc\u016f', // úùûüů
+			'U' : '\u00da\u00d9\u00db\u00dc\u016e' // ÚÙÛÜŮ
+		},
+
+		replaceAccents : function( str ) {
+			var chr,
+				acc = '[',
+				eq = ts.characterEquivalents;
+			if ( !ts.characterRegex ) {
+				ts.characterRegexArray = {};
+				for ( chr in eq ) {
+					if ( typeof chr === 'string' ) {
+						acc += eq[ chr ];
+						ts.characterRegexArray[ chr ] = new RegExp( '[' + eq[ chr ] + ']', 'g' );
+					}
+				}
+				ts.characterRegex = new RegExp( acc + ']' );
+			}
+			if ( ts.characterRegex.test( str ) ) {
+				for ( chr in eq ) {
+					if ( typeof chr === 'string' ) {
+						str = str.replace( ts.characterRegexArray[ chr ], chr );
+					}
+				}
+			}
+			return str;
+		},
+
+		validateOptions : function( c ) {
+			var setting, setting2, typ, timer,
+				// ignore options containing an array
+				ignore = 'headers sortForce sortList sortAppend widgets'.split( ' ' ),
+				orig = c.originalSettings;
+			if ( orig ) {
+				if ( c.debug ) {
+					timer = new Date();
+				}
+				for ( setting in orig ) {
+					typ = typeof ts.defaults[setting];
+					if ( typ === 'undefined' ) {
+						console.warn( 'Tablesorter Warning! "table.config.' + setting + '" option not recognized' );
+					} else if ( typ === 'object' ) {
+						for ( setting2 in orig[setting] ) {
+							typ = ts.defaults[setting] && typeof ts.defaults[setting][setting2];
+							if ( $.inArray( setting, ignore ) < 0 && typ === 'undefined' ) {
+								console.warn( 'Tablesorter Warning! "table.config.' + setting + '.' + setting2 + '" option not recognized' );
+							}
+						}
+					}
+				}
+				if ( c.debug ) {
+					console.log( 'validate options time:' + ts.benchmark( timer ) );
+				}
+			}
+		},
+
+		// restore headers
+		restoreHeaders : function( table ) {
+			var index, $cell,
+				c = $( table )[ 0 ].config,
+				$headers = c.$table.find( c.selectorHeaders ),
+				len = $headers.length;
+			// don't use c.$headers here in case header cells were swapped
+			for ( index = 0; index < len; index++ ) {
+				$cell = $headers.eq( index );
+				// only restore header cells if it is wrapped
+				// because this is also used by the updateAll method
+				if ( $cell.find( '.' + ts.css.headerIn ).length ) {
+					$cell.html( c.headerContent[ index ] );
+				}
+			}
+		},
+
+		destroy : function( table, removeClasses, callback ) {
+			table = $( table )[ 0 ];
+			if ( !table.hasInitialized ) { return; }
+			// remove all widgets
+			ts.removeWidget( table, true, false );
+			var events,
+				$t = $( table ),
+				c = table.config,
+				debug = c.debug,
+				$h = $t.find( 'thead:first' ),
+				$r = $h.find( 'tr.' + ts.css.headerRow ).removeClass( ts.css.headerRow + ' ' + c.cssHeaderRow ),
+				$f = $t.find( 'tfoot:first > tr' ).children( 'th, td' );
+			if ( removeClasses === false && $.inArray( 'uitheme', c.widgets ) >= 0 ) {
+				// reapply uitheme classes, in case we want to maintain appearance
+				$t.triggerHandler( 'applyWidgetId', [ 'uitheme' ] );
+				$t.triggerHandler( 'applyWidgetId', [ 'zebra' ] );
+			}
+			// remove widget added rows, just in case
+			$h.find( 'tr' ).not( $r ).remove();
+			// disable tablesorter - not using .unbind( namespace ) because namespacing was
+			// added in jQuery v1.4.3 - see http://api.jquery.com/event.namespace/
+			events = 'sortReset update updateRows updateAll updateHeaders updateCell addRows updateComplete sorton ' +
+				'appendCache updateCache applyWidgetId applyWidgets refreshWidgets removeWidget destroy mouseup mouseleave ' +
+				'keypress sortBegin sortEnd resetToLoadState '.split( ' ' )
+				.join( c.namespace + ' ' );
+			$t
+				.removeData( 'tablesorter' )
+				.unbind( events.replace( ts.regex.spaces, ' ' ) );
+			c.$headers
+				.add( $f )
+				.removeClass( [ ts.css.header, c.cssHeader, c.cssAsc, c.cssDesc, ts.css.sortAsc, ts.css.sortDesc, ts.css.sortNone ].join( ' ' ) )
+				.removeAttr( 'data-column' )
+				.removeAttr( 'aria-label' )
+				.attr( 'aria-disabled', 'true' );
+			$r
+				.find( c.selectorSort )
+				.unbind( ( 'mousedown mouseup keypress '.split( ' ' ).join( c.namespace + ' ' ) ).replace( ts.regex.spaces, ' ' ) );
+			ts.restoreHeaders( table );
+			$t.toggleClass( ts.css.table + ' ' + c.tableClass + ' tablesorter-' + c.theme, removeClasses === false );
+			$t.removeClass(c.namespace.slice(1));
+			// clear flag in case the plugin is initialized again
+			table.hasInitialized = false;
+			delete table.config.cache;
+			if ( typeof callback === 'function' ) {
+				callback( table );
+			}
+			if ( debug ) {
+				console.log( 'tablesorter has been removed' );
+			}
+		}
+
+	};
+
+	$.fn.tablesorter = function( settings ) {
+		return this.each( function() {
+			var table = this,
+			// merge & extend config options
+			c = $.extend( true, {}, ts.defaults, settings, ts.instanceMethods );
+			// save initial settings
+			c.originalSettings = settings;
+			// create a table from data (build table widget)
+			if ( !table.hasInitialized && ts.buildTable && this.nodeName !== 'TABLE' ) {
+				// return the table (in case the original target is the table's container)
+				ts.buildTable( table, c );
+			} else {
+				ts.setup( table, c );
+			}
+		});
+	};
+
+	// set up debug logs
+	if ( !( window.console && window.console.log ) ) {
+		// access $.tablesorter.logs for browsers that don't have a console...
+		ts.logs = [];
+		/*jshint -W020 */
+		console = {};
+		console.log = console.warn = console.error = console.table = function() {
+			var arg = arguments.length > 1 ? arguments : arguments[0];
+			ts.logs[ ts.logs.length ] = { date: Date.now(), log: arg };
+		};
+	}
+
+	// add default parsers
+	ts.addParser({
+		id : 'no-parser',
+		is : function() {
+			return false;
+		},
+		format : function() {
+			return '';
+		},
+		type : 'text'
+	});
+
+	ts.addParser({
+		id : 'text',
+		is : function() {
+			return true;
+		},
+		format : function( str, table ) {
+			var c = table.config;
+			if ( str ) {
+				str = $.trim( c.ignoreCase ? str.toLocaleLowerCase() : str );
+				str = c.sortLocaleCompare ? ts.replaceAccents( str ) : str;
+			}
+			return str;
+		},
+		type : 'text'
+	});
+
+	ts.regex.nondigit = /[^\w,. \-()]/g;
+	ts.addParser({
+		id : 'digit',
+		is : function( str ) {
+			return ts.isDigit( str );
+		},
+		format : function( str, table ) {
+			var num = ts.formatFloat( ( str || '' ).replace( ts.regex.nondigit, '' ), table );
+			return str && typeof num === 'number' ? num :
+				str ? $.trim( str && table.config.ignoreCase ? str.toLocaleLowerCase() : str ) : str;
+		},
+		type : 'numeric'
+	});
+
+	ts.regex.currencyReplace = /[+\-,. ]/g;
+	ts.regex.currencyTest = /^\(?\d+[\u00a3$\u20ac\u00a4\u00a5\u00a2?.]|[\u00a3$\u20ac\u00a4\u00a5\u00a2?.]\d+\)?$/;
+	ts.addParser({
+		id : 'currency',
+		is : function( str ) {
+			str = ( str || '' ).replace( ts.regex.currencyReplace, '' );
+			// test for £$€¤¥¢
+			return ts.regex.currencyTest.test( str );
+		},
+		format : function( str, table ) {
+			var num = ts.formatFloat( ( str || '' ).replace( ts.regex.nondigit, '' ), table );
+			return str && typeof num === 'number' ? num :
+				str ? $.trim( str && table.config.ignoreCase ? str.toLocaleLowerCase() : str ) : str;
+		},
+		type : 'numeric'
+	});
+
+	// too many protocols to add them all https://en.wikipedia.org/wiki/URI_scheme
+	// now, this regex can be updated before initialization
+	ts.regex.urlProtocolTest = /^(https?|ftp|file):\/\//;
+	ts.regex.urlProtocolReplace = /(https?|ftp|file):\/\/(www\.)?/;
+	ts.addParser({
+		id : 'url',
+		is : function( str ) {
+			return ts.regex.urlProtocolTest.test( str );
+		},
+		format : function( str ) {
+			return str ? $.trim( str.replace( ts.regex.urlProtocolReplace, '' ) ) : str;
+		},
+		type : 'text'
+	});
+
+	ts.regex.dash = /-/g;
+	ts.regex.isoDate = /^\d{4}[\/\-]\d{1,2}[\/\-]\d{1,2}/;
+	ts.addParser({
+		id : 'isoDate',
+		is : function( str ) {
+			return ts.regex.isoDate.test( str );
+		},
+		format : function( str, table ) {
+			var date = str ? new Date( str.replace( ts.regex.dash, '/' ) ) : str;
+			return date instanceof Date && isFinite( date ) ? date.getTime() : str;
+		},
+		type : 'numeric'
+	});
+
+	ts.regex.percent = /%/g;
+	ts.regex.percentTest = /(\d\s*?%|%\s*?\d)/;
+	ts.addParser({
+		id : 'percent',
+		is : function( str ) {
+			return ts.regex.percentTest.test( str ) && str.length < 15;
+		},
+		format : function( str, table ) {
+			return str ? ts.formatFloat( str.replace( ts.regex.percent, '' ), table ) : str;
+		},
+		type : 'numeric'
+	});
+
+	// added image parser to core v2.17.9
+	ts.addParser({
+		id : 'image',
+		is : function( str, table, node, $node ) {
+			return $node.find( 'img' ).length > 0;
+		},
+		format : function( str, table, cell ) {
+			return $( cell ).find( 'img' ).attr( table.config.imgAttr || 'alt' ) || str;
+		},
+		parsed : true, // filter widget flag
+		type : 'text'
+	});
+
+	ts.regex.dateReplace = /(\S)([AP]M)$/i; // used by usLongDate & time parser
+	ts.regex.usLongDateTest1 = /^[A-Z]{3,10}\.?\s+\d{1,2},?\s+(\d{4})(\s+\d{1,2}:\d{2}(:\d{2})?(\s+[AP]M)?)?$/i;
+	ts.regex.usLongDateTest2 = /^\d{1,2}\s+[A-Z]{3,10}\s+\d{4}/i;
+	ts.addParser({
+		id : 'usLongDate',
+		is : function( str ) {
+			// two digit years are not allowed cross-browser
+			// Jan 01, 2013 12:34:56 PM or 01 Jan 2013
+			return ts.regex.usLongDateTest1.test( str ) || ts.regex.usLongDateTest2.test( str );
+		},
+		format : function( str, table ) {
+			var date = str ? new Date( str.replace( ts.regex.dateReplace, '$1 $2' ) ) : str;
+			return date instanceof Date && isFinite( date ) ? date.getTime() : str;
+		},
+		type : 'numeric'
+	});
+
+	// testing for ##-##-#### or ####-##-##, so it's not perfect; time can be included
+	ts.regex.shortDateTest = /(^\d{1,2}[\/\s]\d{1,2}[\/\s]\d{4})|(^\d{4}[\/\s]\d{1,2}[\/\s]\d{1,2})/;
+	// escaped "-" because JSHint in Firefox was showing it as an error
+	ts.regex.shortDateReplace = /[\-.,]/g;
+	// XXY covers MDY & DMY formats
+	ts.regex.shortDateXXY = /(\d{1,2})[\/\s](\d{1,2})[\/\s](\d{4})/;
+	ts.regex.shortDateYMD = /(\d{4})[\/\s](\d{1,2})[\/\s](\d{1,2})/;
+	ts.convertFormat = function( dateString, format ) {
+		dateString = ( dateString || '' )
+			.replace( ts.regex.spaces, ' ' )
+			.replace( ts.regex.shortDateReplace, '/' );
+		if ( format === 'mmddyyyy' ) {
+			dateString = dateString.replace( ts.regex.shortDateXXY, '$3/$1/$2' );
+		} else if ( format === 'ddmmyyyy' ) {
+			dateString = dateString.replace( ts.regex.shortDateXXY, '$3/$2/$1' );
+		} else if ( format === 'yyyymmdd' ) {
+			dateString = dateString.replace( ts.regex.shortDateYMD, '$1/$2/$3' );
+		}
+		var date = new Date( dateString );
+		return date instanceof Date && isFinite( date ) ? date.getTime() : '';
+	};
+
+	ts.addParser({
+		id : 'shortDate', // 'mmddyyyy', 'ddmmyyyy' or 'yyyymmdd'
+		is : function( str ) {
+			str = ( str || '' ).replace( ts.regex.spaces, ' ' ).replace( ts.regex.shortDateReplace, '/' );
+			return ts.regex.shortDateTest.test( str );
+		},
+		format : function( str, table, cell, cellIndex ) {
+			if ( str ) {
+				var c = table.config,
+					$header = c.$headerIndexed[ cellIndex ],
+					format = $header.length && $header.data( 'dateFormat' ) ||
+						ts.getData( $header, ts.getColumnData( table, c.headers, cellIndex ), 'dateFormat' ) ||
+						c.dateFormat;
+				// save format because getData can be slow...
+				if ( $header.length ) {
+					$header.data( 'dateFormat', format );
+				}
+				return ts.convertFormat( str, format ) || str;
+			}
+			return str;
+		},
+		type : 'numeric'
+	});
+
+	// match 24 hour time & 12 hours time + am/pm - see http://regexr.com/3c3tk
+	ts.regex.timeTest = /^(0?[1-9]|1[0-2]):([0-5]\d)(\s[AP]M)$|^((?:[01]\d|[2][0-4]):[0-5]\d)$/i;
+	ts.regex.timeMatch = /(0?[1-9]|1[0-2]):([0-5]\d)(\s[AP]M)|((?:[01]\d|[2][0-4]):[0-5]\d)/i;
+	ts.addParser({
+		id : 'time',
+		is : function( str ) {
+			return ts.regex.timeTest.test( str );
+		},
+		format : function( str, table ) {
+			// isolate time... ignore month, day and year
+			var temp,
+				timePart = ( str || '' ).match( ts.regex.timeMatch ),
+				orig = new Date( str ),
+				// no time component? default to 00:00 by leaving it out, but only if str is defined
+				time = str && ( timePart !== null ? timePart[ 0 ] : '00:00 AM' ),
+				date = time ? new Date( '2000/01/01 ' + time.replace( ts.regex.dateReplace, '$1 $2' ) ) : time;
+			if ( date instanceof Date && isFinite( date ) ) {
+				temp = orig instanceof Date && isFinite( orig ) ? orig.getTime() : 0;
+				// if original string was a valid date, add it to the decimal so the column sorts in some kind of order
+				// luckily new Date() ignores the decimals
+				return temp ? parseFloat( date.getTime() + '.' + orig.getTime() ) : date.getTime();
+			}
+			return str;
+		},
+		type : 'numeric'
+	});
+
+	ts.addParser({
+		id : 'metadata',
+		is : function() {
+			return false;
+		},
+		format : function( str, table, cell ) {
+			var c = table.config,
+			p = ( !c.parserMetadataName ) ? 'sortValue' : c.parserMetadataName;
+			return $( cell ).metadata()[ p ];
+		},
+		type : 'numeric'
+	});
+
+	/*
+		██████ ██████ █████▄ █████▄ ▄████▄
+		  ▄█▀  ██▄▄   ██▄▄██ ██▄▄██ ██▄▄██
+		▄█▀    ██▀▀   ██▀▀██ ██▀▀█  ██▀▀██
+		██████ ██████ █████▀ ██  ██ ██  ██
+		*/
+	// add default widgets
+	ts.addWidget({
+		id : 'zebra',
+		priority : 90,
+		format : function( table, c, wo ) {
+			var $visibleRows, $row, count, isEven, tbodyIndex, rowIndex, len,
+				child = new RegExp( c.cssChildRow, 'i' ),
+				$tbodies = c.$tbodies.add( $( c.namespace + '_extra_table' ).children( 'tbody:not(.' + c.cssInfoBlock + ')' ) );
+			for ( tbodyIndex = 0; tbodyIndex < $tbodies.length; tbodyIndex++ ) {
+				// loop through the visible rows
+				count = 0;
+				$visibleRows = $tbodies.eq( tbodyIndex ).children( 'tr:visible' ).not( c.selectorRemove );
+				len = $visibleRows.length;
+				for ( rowIndex = 0; rowIndex < len; rowIndex++ ) {
+					$row = $visibleRows.eq( rowIndex );
+					// style child rows the same way the parent row was styled
+					if ( !child.test( $row[ 0 ].className ) ) { count++; }
+					isEven = ( count % 2 === 0 );
+					$row
+						.removeClass( wo.zebra[ isEven ? 1 : 0 ] )
+						.addClass( wo.zebra[ isEven ? 0 : 1 ] );
+				}
+			}
+		},
+		remove : function( table, c, wo, refreshing ) {
+			if ( refreshing ) { return; }
+			var tbodyIndex, $tbody,
+				$tbodies = c.$tbodies,
+				toRemove = ( wo.zebra || [ 'even', 'odd' ] ).join( ' ' );
+			for ( tbodyIndex = 0; tbodyIndex < $tbodies.length; tbodyIndex++ ){
+				$tbody = ts.processTbody( table, $tbodies.eq( tbodyIndex ), true ); // remove tbody
+				$tbody.children().removeClass( toRemove );
+				ts.processTbody( table, $tbody, false ); // restore tbody
+			}
+		}
+	});
+
+})( jQuery );
+
+/*! Widget: storage - updated 4/18/2017 (v2.28.8) */
+/*global JSON:false */
+;(function ($, window, document) {
+	'use strict';
+
+	var ts = $.tablesorter || {};
+
+	// update defaults for validator; these values must be falsy!
+	$.extend(true, ts.defaults, {
+		fixedUrl: '',
+		widgetOptions: {
+			storage_fixedUrl: '',
+			storage_group: '',
+			storage_page: '',
+			storage_storageType: '',
+			storage_tableId: '',
+			storage_useSessionStorage: ''
+		}
+	});
+
+	// *** Store data in local storage, with a cookie fallback ***
+	/* IE7 needs JSON library for JSON.stringify - (http://caniuse.com/#search=json)
+	   if you need it, then include https://github.com/douglascrockford/JSON-js
+
+	   $.parseJSON is not available is jQuery versions older than 1.4.1, using older
+	   versions will only allow storing information for one page at a time
+
+	   // *** Save data (JSON format only) ***
+	   // val must be valid JSON... use http://jsonlint.com/ to ensure it is valid
+	   var val = { "mywidget" : "data1" }; // valid JSON uses double quotes
+	   // $.tablesorter.storage(table, key, val);
+	   $.tablesorter.storage(table, 'tablesorter-mywidget', val);
+
+	   // *** Get data: $.tablesorter.storage(table, key); ***
+	   v = $.tablesorter.storage(table, 'tablesorter-mywidget');
+	   // val may be empty, so also check for your data
+	   val = (v && v.hasOwnProperty('mywidget')) ? v.mywidget : '';
+	   alert(val); // 'data1' if saved, or '' if not
+	*/
+	ts.storage = function(table, key, value, options) {
+		table = $(table)[0];
+		var cookieIndex, cookies, date,
+			hasStorage = false,
+			values = {},
+			c = table.config,
+			wo = c && c.widgetOptions,
+			storageType = (
+				( options && options.storageType ) || ( wo && wo.storage_storageType )
+			).toString().charAt(0).toLowerCase(),
+			// deprecating "useSessionStorage"; any storageType setting overrides it
+			session = storageType ? '' :
+				( options && options.useSessionStorage ) || ( wo && wo.storage_useSessionStorage ),
+			$table = $(table),
+			// id from (1) options ID, (2) table 'data-table-group' attribute, (3) widgetOptions.storage_tableId,
+			// (4) table ID, then (5) table index
+			id = options && options.id ||
+				$table.attr( options && options.group || wo && wo.storage_group || 'data-table-group') ||
+				wo && wo.storage_tableId || table.id || $('.tablesorter').index( $table ),
+			// url from (1) options url, (2) table 'data-table-page' attribute, (3) widgetOptions.storage_fixedUrl,
+			// (4) table.config.fixedUrl (deprecated), then (5) window location path
+			url = options && options.url ||
+				$table.attr(options && options.page || wo && wo.storage_page || 'data-table-page') ||
+				wo && wo.storage_fixedUrl || c && c.fixedUrl || window.location.pathname;
+
+		// skip if using cookies
+		if (storageType !== 'c') {
+			storageType = (storageType === 's' || session) ? 'sessionStorage' : 'localStorage';
+			// https://gist.github.com/paulirish/5558557
+			if (storageType in window) {
+				try {
+					window[storageType].setItem('_tmptest', 'temp');
+					hasStorage = true;
+					window[storageType].removeItem('_tmptest');
+				} catch (error) {
+					if (c && c.debug) {
+						console.warn( storageType + ' is not supported in this browser' );
+					}
+				}
+			}
+		}
+		if (c.debug) {
+			console.log('Storage widget using', hasStorage ? storageType : 'cookies');
+		}
+		// *** get value ***
+		if ($.parseJSON) {
+			if (hasStorage) {
+				values = $.parseJSON( window[storageType][key] || 'null' ) || {};
+			} else {
+				// old browser, using cookies
+				cookies = document.cookie.split(/[;\s|=]/);
+				// add one to get from the key to the value
+				cookieIndex = $.inArray(key, cookies) + 1;
+				values = (cookieIndex !== 0) ? $.parseJSON(cookies[cookieIndex] || 'null') || {} : {};
+			}
+		}
+		// allow value to be an empty string too
+		if (typeof value !== 'undefined' && window.JSON && JSON.hasOwnProperty('stringify')) {
+			// add unique identifiers = url pathname > table ID/index on page > data
+			if (!values[url]) {
+				values[url] = {};
+			}
+			values[url][id] = value;
+			// *** set value ***
+			if (hasStorage) {
+				window[storageType][key] = JSON.stringify(values);
+			} else {
+				date = new Date();
+				date.setTime(date.getTime() + (31536e+6)); // 365 days
+				document.cookie = key + '=' + (JSON.stringify(values)).replace(/\"/g, '\"') + '; expires=' + date.toGMTString() + '; path=/';
+			}
+		} else {
+			return values && values[url] ? values[url][id] : '';
+		}
+	};
+
+})(jQuery, window, document);
+
+/*! Widget: uitheme - updated 9/27/2017 (v2.29.0) */
+;(function ($) {
+	'use strict';
+	var ts = $.tablesorter || {};
+
+	ts.themes = {
+		'bootstrap' : {
+			table        : 'table table-bordered table-striped',
+			caption      : 'caption',
+			// header class names
+			header       : 'bootstrap-header', // give the header a gradient background (theme.bootstrap_2.css)
+			sortNone     : '',
+			sortAsc      : '',
+			sortDesc     : '',
+			active       : '', // applied when column is sorted
+			hover        : '', // custom css required - a defined bootstrap style may not override other classes
+			// icon class names
+			icons        : '', // add 'bootstrap-icon-white' to make them white; this icon class is added to the <i> in the header
+			iconSortNone : 'bootstrap-icon-unsorted', // class name added to icon when column is not sorted
+			iconSortAsc  : 'glyphicon glyphicon-chevron-up', // class name added to icon when column has ascending sort
+			iconSortDesc : 'glyphicon glyphicon-chevron-down', // class name added to icon when column has descending sort
+			filterRow    : '', // filter row class
+			footerRow    : '',
+			footerCells  : '',
+			even         : '', // even row zebra striping
+			odd          : ''  // odd row zebra striping
+		},
+		'jui' : {
+			table        : 'ui-widget ui-widget-content ui-corner-all', // table classes
+			caption      : 'ui-widget-content',
+			// header class names
+			header       : 'ui-widget-header ui-corner-all ui-state-default', // header classes
+			sortNone     : '',
+			sortAsc      : '',
+			sortDesc     : '',
+			active       : 'ui-state-active', // applied when column is sorted
+			hover        : 'ui-state-hover',  // hover class
+			// icon class names
+			icons        : 'ui-icon', // icon class added to the <i> in the header
+			iconSortNone : 'ui-icon-carat-2-n-s ui-icon-caret-2-n-s', // class name added to icon when column is not sorted
+			iconSortAsc  : 'ui-icon-carat-1-n ui-icon-caret-1-n', // class name added to icon when column has ascending sort
+			iconSortDesc : 'ui-icon-carat-1-s ui-icon-caret-1-s', // class name added to icon when column has descending sort
+			filterRow    : '',
+			footerRow    : '',
+			footerCells  : '',
+			even         : 'ui-widget-content', // even row zebra striping
+			odd          : 'ui-state-default'   // odd row zebra striping
+		}
+	};
+
+	$.extend(ts.css, {
+		wrapper : 'tablesorter-wrapper' // ui theme & resizable
+	});
+
+	ts.addWidget({
+		id: 'uitheme',
+		priority: 10,
+		format: function(table, c, wo) {
+			var i, tmp, hdr, icon, time, $header, $icon, $tfoot, $h, oldtheme, oldremove, oldIconRmv, hasOldTheme,
+				themesAll = ts.themes,
+				$table = c.$table.add( $( c.namespace + '_extra_table' ) ),
+				$headers = c.$headers.add( $( c.namespace + '_extra_headers' ) ),
+				theme = c.theme || 'jui',
+				themes = themesAll[theme] || {},
+				remove = $.trim( [ themes.sortNone, themes.sortDesc, themes.sortAsc, themes.active ].join( ' ' ) ),
+				iconRmv = $.trim( [ themes.iconSortNone, themes.iconSortDesc, themes.iconSortAsc ].join( ' ' ) );
+			if (c.debug) { time = new Date(); }
+			// initialization code - run once
+			if (!$table.hasClass('tablesorter-' + theme) || c.theme !== c.appliedTheme || !wo.uitheme_applied) {
+				wo.uitheme_applied = true;
+				oldtheme = themesAll[c.appliedTheme] || {};
+				hasOldTheme = !$.isEmptyObject(oldtheme);
+				oldremove =  hasOldTheme ? [ oldtheme.sortNone, oldtheme.sortDesc, oldtheme.sortAsc, oldtheme.active ].join( ' ' ) : '';
+				oldIconRmv = hasOldTheme ? [ oldtheme.iconSortNone, oldtheme.iconSortDesc, oldtheme.iconSortAsc ].join( ' ' ) : '';
+				if (hasOldTheme) {
+					wo.zebra[0] = $.trim( ' ' + wo.zebra[0].replace(' ' + oldtheme.even, '') );
+					wo.zebra[1] = $.trim( ' ' + wo.zebra[1].replace(' ' + oldtheme.odd, '') );
+					c.$tbodies.children().removeClass( [ oldtheme.even, oldtheme.odd ].join(' ') );
+				}
+				// update zebra stripes
+				if (themes.even) { wo.zebra[0] += ' ' + themes.even; }
+				if (themes.odd) { wo.zebra[1] += ' ' + themes.odd; }
+				// add caption style
+				$table.children('caption')
+					.removeClass(oldtheme.caption || '')
+					.addClass(themes.caption);
+				// add table/footer class names
+				$tfoot = $table
+					// remove other selected themes
+					.removeClass( (c.appliedTheme ? 'tablesorter-' + (c.appliedTheme || '') : '') + ' ' + (oldtheme.table || '') )
+					.addClass('tablesorter-' + theme + ' ' + (themes.table || '')) // add theme widget class name
+					.children('tfoot');
+				c.appliedTheme = c.theme;
+
+				if ($tfoot.length) {
+					$tfoot
+						// if oldtheme.footerRow or oldtheme.footerCells are undefined, all class names are removed
+						.children('tr').removeClass(oldtheme.footerRow || '').addClass(themes.footerRow)
+						.children('th, td').removeClass(oldtheme.footerCells || '').addClass(themes.footerCells);
+				}
+				// update header classes
+				$headers
+					.removeClass( (hasOldTheme ? [ oldtheme.header, oldtheme.hover, oldremove ].join(' ') : '') || '' )
+					.addClass(themes.header)
+					.not('.sorter-false')
+					.unbind('mouseenter.tsuitheme mouseleave.tsuitheme')
+					.bind('mouseenter.tsuitheme mouseleave.tsuitheme', function(event) {
+						// toggleClass with switch added in jQuery 1.3
+						$(this)[ event.type === 'mouseenter' ? 'addClass' : 'removeClass' ](themes.hover || '');
+					});
+
+				$headers.each(function(){
+					var $this = $(this);
+					if (!$this.find('.' + ts.css.wrapper).length) {
+						// Firefox needs this inner div to position the icon & resizer correctly
+						$this.wrapInner('<div class="' + ts.css.wrapper + '" style="position:relative;height:100%;width:100%"></div>');
+					}
+				});
+				if (c.cssIcon) {
+					// if c.cssIcon is '', then no <i> is added to the header
+					$headers
+						.find('.' + ts.css.icon)
+						.removeClass(hasOldTheme ? [ oldtheme.icons, oldIconRmv ].join(' ') : '')
+						.addClass(themes.icons || '');
+				}
+				// filter widget initializes after uitheme
+				if (ts.hasWidget( c.table, 'filter' )) {
+					tmp = function() {
+						$table.children('thead').children('.' + ts.css.filterRow)
+							.removeClass(hasOldTheme ? oldtheme.filterRow || '' : '')
+							.addClass(themes.filterRow || '');
+					};
+					if (wo.filter_initialized) {
+						tmp();
+					} else {
+						$table.one('filterInit', function() {
+							tmp();
+						});
+					}
+				}
+			}
+			for (i = 0; i < c.columns; i++) {
+				$header = c.$headers
+					.add($(c.namespace + '_extra_headers'))
+					.not('.sorter-false')
+					.filter('[data-column="' + i + '"]');
+				$icon = (ts.css.icon) ? $header.find('.' + ts.css.icon) : $();
+				$h = $headers.not('.sorter-false').filter('[data-column="' + i + '"]:last');
+				if ($h.length) {
+					$header.removeClass(remove);
+					$icon.removeClass(iconRmv);
+					if ($h[0].sortDisabled) {
+						// no sort arrows for disabled columns!
+						$icon.removeClass(themes.icons || '');
+					} else {
+						hdr = themes.sortNone;
+						icon = themes.iconSortNone;
+						if ($h.hasClass(ts.css.sortAsc)) {
+							hdr = [ themes.sortAsc, themes.active ].join(' ');
+							icon = themes.iconSortAsc;
+						} else if ($h.hasClass(ts.css.sortDesc)) {
+							hdr = [ themes.sortDesc, themes.active ].join(' ');
+							icon = themes.iconSortDesc;
+						}
+						$header.addClass(hdr);
+						$icon.addClass(icon || '');
+					}
+				}
+			}
+			if (c.debug) {
+				console.log('Applying ' + theme + ' theme' + ts.benchmark(time));
+			}
+		},
+		remove: function(table, c, wo, refreshing) {
+			if (!wo.uitheme_applied) { return; }
+			var $table = c.$table,
+				theme = c.appliedTheme || 'jui',
+				themes = ts.themes[ theme ] || ts.themes.jui,
+				$headers = $table.children('thead').children(),
+				remove = themes.sortNone + ' ' + themes.sortDesc + ' ' + themes.sortAsc,
+				iconRmv = themes.iconSortNone + ' ' + themes.iconSortDesc + ' ' + themes.iconSortAsc;
+			$table.removeClass('tablesorter-' + theme + ' ' + themes.table);
+			wo.uitheme_applied = false;
+			if (refreshing) { return; }
+			$table.find(ts.css.header).removeClass(themes.header);
+			$headers
+				.unbind('mouseenter.tsuitheme mouseleave.tsuitheme') // remove hover
+				.removeClass(themes.hover + ' ' + remove + ' ' + themes.active)
+				.filter('.' + ts.css.filterRow)
+				.removeClass(themes.filterRow);
+			$headers.find('.' + ts.css.icon).removeClass(themes.icons + ' ' + iconRmv);
+		}
+	});
+
+})(jQuery);
+
+/*! Widget: columns - updated 5/24/2017 (v2.28.11) */
+;(function ($) {
+	'use strict';
+	var ts = $.tablesorter || {};
+
+	ts.addWidget({
+		id: 'columns',
+		priority: 65,
+		options : {
+			columns : [ 'primary', 'secondary', 'tertiary' ]
+		},
+		format: function(table, c, wo) {
+			var $tbody, tbodyIndex, $rows, rows, $row, $cells, remove, indx,
+			$table = c.$table,
+			$tbodies = c.$tbodies,
+			sortList = c.sortList,
+			len = sortList.length,
+			// removed c.widgetColumns support
+			css = wo && wo.columns || [ 'primary', 'secondary', 'tertiary' ],
+			last = css.length - 1;
+			remove = css.join(' ');
+			// check if there is a sort (on initialization there may not be one)
+			for (tbodyIndex = 0; tbodyIndex < $tbodies.length; tbodyIndex++ ) {
+				$tbody = ts.processTbody(table, $tbodies.eq(tbodyIndex), true); // detach tbody
+				$rows = $tbody.children('tr');
+				// loop through the visible rows
+				$rows.each(function() {
+					$row = $(this);
+					if (this.style.display !== 'none') {
+						// remove all columns class names
+						$cells = $row.children().removeClass(remove);
+						// add appropriate column class names
+						if (sortList && sortList[0]) {
+							// primary sort column class
+							$cells.eq(sortList[0][0]).addClass(css[0]);
+							if (len > 1) {
+								for (indx = 1; indx < len; indx++) {
+									// secondary, tertiary, etc sort column classes
+									$cells.eq(sortList[indx][0]).addClass( css[indx] || css[last] );
+								}
+							}
+						}
+					}
+				});
+				ts.processTbody(table, $tbody, false);
+			}
+			// add classes to thead and tfoot
+			rows = wo.columns_thead !== false ? [ 'thead tr' ] : [];
+			if (wo.columns_tfoot !== false) {
+				rows.push('tfoot tr');
+			}
+			if (rows.length) {
+				$rows = $table.find( rows.join(',') ).children().removeClass(remove);
+				if (len) {
+					for (indx = 0; indx < len; indx++) {
+						// add primary. secondary, tertiary, etc sort column classes
+						$rows.filter('[data-column="' + sortList[indx][0] + '"]').addClass(css[indx] || css[last]);
+					}
+				}
+			}
+		},
+		remove: function(table, c, wo) {
+			var tbodyIndex, $tbody,
+				$tbodies = c.$tbodies,
+				remove = (wo.columns || [ 'primary', 'secondary', 'tertiary' ]).join(' ');
+			c.$headers.removeClass(remove);
+			c.$table.children('tfoot').children('tr').children('th, td').removeClass(remove);
+			for (tbodyIndex = 0; tbodyIndex < $tbodies.length; tbodyIndex++ ) {
+				$tbody = ts.processTbody(table, $tbodies.eq(tbodyIndex), true); // remove tbody
+				$tbody.children('tr').each(function() {
+					$(this).children().removeClass(remove);
+				});
+				ts.processTbody(table, $tbody, false); // restore tbody
+			}
+		}
+	});
+
+})(jQuery);
+
+/*! Widget: filter - updated 7/4/2017 (v2.28.15) *//*
+ * Requires tablesorter v2.8+ and jQuery 1.7+
+ * by Rob Garrison
+ */
+;( function ( $ ) {
+	'use strict';
+	var tsf, tsfRegex,
+		ts = $.tablesorter || {},
+		tscss = ts.css,
+		tskeyCodes = ts.keyCodes;
+
+	$.extend( tscss, {
+		filterRow      : 'tablesorter-filter-row',
+		filter         : 'tablesorter-filter',
+		filterDisabled : 'disabled',
+		filterRowHide  : 'hideme'
+	});
+
+	$.extend( tskeyCodes, {
+		backSpace : 8,
+		escape : 27,
+		space : 32,
+		left : 37,
+		down : 40
+	});
+
+	ts.addWidget({
+		id: 'filter',
+		priority: 50,
+		options : {
+			filter_cellFilter    : '',    // css class name added to the filter cell ( string or array )
+			filter_childRows     : false, // if true, filter includes child row content in the search
+			filter_childByColumn : false, // ( filter_childRows must be true ) if true = search child rows by column; false = search all child row text grouped
+			filter_childWithSibs : true,  // if true, include matching child row siblings
+			filter_columnAnyMatch: true,  // if true, allows using '#:{query}' in AnyMatch searches ( column:query )
+			filter_columnFilters : true,  // if true, a filter will be added to the top of each table column
+			filter_cssFilter     : '',    // css class name added to the filter row & each input in the row ( tablesorter-filter is ALWAYS added )
+			filter_defaultAttrib : 'data-value', // data attribute in the header cell that contains the default filter value
+			filter_defaultFilter : {},    // add a default column filter type '~{query}' to make fuzzy searches default; '{q1} AND {q2}' to make all searches use a logical AND.
+			filter_excludeFilter : {},    // filters to exclude, per column
+			filter_external      : '',    // jQuery selector string ( or jQuery object ) of external filters
+			filter_filteredRow   : 'filtered', // class added to filtered rows; define in css with "display:none" to hide the filtered-out rows
+			filter_formatter     : null,  // add custom filter elements to the filter row
+			filter_functions     : null,  // add custom filter functions using this option
+			filter_hideEmpty     : true,  // hide filter row when table is empty
+			filter_hideFilters   : false, // collapse filter row when mouse leaves the area
+			filter_ignoreCase    : true,  // if true, make all searches case-insensitive
+			filter_liveSearch    : true,  // if true, search column content while the user types ( with a delay )
+			filter_matchType     : { 'input': 'exact', 'select': 'exact' }, // global query settings ('exact' or 'match'); overridden by "filter-match" or "filter-exact" class
+			filter_onlyAvail     : 'filter-onlyAvail', // a header with a select dropdown & this class name will only show available ( visible ) options within the drop down
+			filter_placeholder   : { search : '', select : '' }, // default placeholder text ( overridden by any header 'data-placeholder' setting )
+			filter_reset         : null,  // jQuery selector string of an element used to reset the filters
+			filter_resetOnEsc    : true,  // Reset filter input when the user presses escape - normalized across browsers
+			filter_saveFilters   : false, // Use the $.tablesorter.storage utility to save the most recent filters
+			filter_searchDelay   : 300,   // typing delay in milliseconds before starting a search
+			filter_searchFiltered: true,  // allow searching through already filtered rows in special circumstances; will speed up searching in large tables if true
+			filter_selectSource  : null,  // include a function to return an array of values to be added to the column filter select
+			filter_selectSourceSeparator : '|', // filter_selectSource array text left of the separator is added to the option value, right into the option text
+			filter_serversideFiltering : false, // if true, must perform server-side filtering b/c client-side filtering is disabled, but the ui and events will still be used.
+			filter_startsWith    : false, // if true, filter start from the beginning of the cell contents
+			filter_useParsedData : false  // filter all data using parsed content
+		},
+		format: function( table, c, wo ) {
+			if ( !c.$table.hasClass( 'hasFilters' ) ) {
+				tsf.init( table, c, wo );
+			}
+		},
+		remove: function( table, c, wo, refreshing ) {
+			var tbodyIndex, $tbody,
+				$table = c.$table,
+				$tbodies = c.$tbodies,
+				events = (
+					'addRows updateCell update updateRows updateComplete appendCache filterReset ' +
+					'filterAndSortReset filterFomatterUpdate filterEnd search stickyHeadersInit '
+				).split( ' ' ).join( c.namespace + 'filter ' );
+			$table
+				.removeClass( 'hasFilters' )
+				// add filter namespace to all BUT search
+				.unbind( events.replace( ts.regex.spaces, ' ' ) )
+				// remove the filter row even if refreshing, because the column might have been moved
+				.find( '.' + tscss.filterRow ).remove();
+			wo.filter_initialized = false;
+			if ( refreshing ) { return; }
+			for ( tbodyIndex = 0; tbodyIndex < $tbodies.length; tbodyIndex++ ) {
+				$tbody = ts.processTbody( table, $tbodies.eq( tbodyIndex ), true ); // remove tbody
+				$tbody.children().removeClass( wo.filter_filteredRow ).show();
+				ts.processTbody( table, $tbody, false ); // restore tbody
+			}
+			if ( wo.filter_reset ) {
+				$( document ).undelegate( wo.filter_reset, 'click' + c.namespace + 'filter' );
+			}
+		}
+	});
+
+	tsf = ts.filter = {
+
+		// regex used in filter 'check' functions - not for general use and not documented
+		regex: {
+			regex     : /^\/((?:\\\/|[^\/])+)\/([migyu]{0,5})?$/, // regex to test for regex
+			child     : /tablesorter-childRow/, // child row class name; this gets updated in the script
+			filtered  : /filtered/, // filtered (hidden) row class name; updated in the script
+			type      : /undefined|number/, // check type
+			exact     : /(^[\"\'=]+)|([\"\'=]+$)/g, // exact match (allow '==')
+			operators : /[<>=]/g, // replace operators
+			query     : '(q|query)', // replace filter queries
+			wild01    : /\?/g, // wild card match 0 or 1
+			wild0More : /\*/g, // wild care match 0 or more
+			quote     : /\"/g,
+			isNeg1    : /(>=?\s*-\d)/,
+			isNeg2    : /(<=?\s*\d)/
+		},
+		// function( c, data ) { }
+		// c = table.config
+		// data.$row = jQuery object of the row currently being processed
+		// data.$cells = jQuery object of all cells within the current row
+		// data.filters = array of filters for all columns ( some may be undefined )
+		// data.filter = filter for the current column
+		// data.iFilter = same as data.filter, except lowercase ( if wo.filter_ignoreCase is true )
+		// data.exact = table cell text ( or parsed data if column parser enabled; may be a number & not a string )
+		// data.iExact = same as data.exact, except lowercase ( if wo.filter_ignoreCase is true; may be a number & not a string )
+		// data.cache = table cell text from cache, so it has been parsed ( & in all lower case if c.ignoreCase is true )
+		// data.cacheArray = An array of parsed content from each table cell in the row being processed
+		// data.index = column index; table = table element ( DOM )
+		// data.parsed = array ( by column ) of boolean values ( from filter_useParsedData or 'filter-parsed' class )
+		types: {
+			or : function( c, data, vars ) {
+				// look for "|", but not if it is inside of a regular expression
+				if ( ( tsfRegex.orTest.test( data.iFilter ) || tsfRegex.orSplit.test( data.filter ) ) &&
+					// this test for regex has potential to slow down the overall search
+					!tsfRegex.regex.test( data.filter ) ) {
+					var indx, filterMatched, query, regex,
+						// duplicate data but split filter
+						data2 = $.extend( {}, data ),
+						filter = data.filter.split( tsfRegex.orSplit ),
+						iFilter = data.iFilter.split( tsfRegex.orSplit ),
+						len = filter.length;
+					for ( indx = 0; indx < len; indx++ ) {
+						data2.nestedFilters = true;
+						data2.filter = '' + ( tsf.parseFilter( c, filter[ indx ], data ) || '' );
+						data2.iFilter = '' + ( tsf.parseFilter( c, iFilter[ indx ], data ) || '' );
+						query = '(' + ( tsf.parseFilter( c, data2.filter, data ) || '' ) + ')';
+						try {
+							// use try/catch, because query may not be a valid regex if "|" is contained within a partial regex search,
+							// e.g "/(Alex|Aar" -> Uncaught SyntaxError: Invalid regular expression: /(/(Alex)/: Unterminated group
+							regex = new RegExp( data.isMatch ? query : '^' + query + '$', c.widgetOptions.filter_ignoreCase ? 'i' : '' );
+							// filterMatched = data2.filter === '' && indx > 0 ? true
+							// look for an exact match with the 'or' unless the 'filter-match' class is found
+							filterMatched = regex.test( data2.exact ) || tsf.processTypes( c, data2, vars );
+							if ( filterMatched ) {
+								return filterMatched;
+							}
+						} catch ( error ) {
+							return null;
+						}
+					}
+					// may be null from processing types
+					return filterMatched || false;
+				}
+				return null;
+			},
+			// Look for an AND or && operator ( logical and )
+			and : function( c, data, vars ) {
+				if ( tsfRegex.andTest.test( data.filter ) ) {
+					var indx, filterMatched, result, query, regex,
+						// duplicate data but split filter
+						data2 = $.extend( {}, data ),
+						filter = data.filter.split( tsfRegex.andSplit ),
+						iFilter = data.iFilter.split( tsfRegex.andSplit ),
+						len = filter.length;
+					for ( indx = 0; indx < len; indx++ ) {
+						data2.nestedFilters = true;
+						data2.filter = '' + ( tsf.parseFilter( c, filter[ indx ], data ) || '' );
+						data2.iFilter = '' + ( tsf.parseFilter( c, iFilter[ indx ], data ) || '' );
+						query = ( '(' + ( tsf.parseFilter( c, data2.filter, data ) || '' ) + ')' )
+							// replace wild cards since /(a*)/i will match anything
+							.replace( tsfRegex.wild01, '\\S{1}' ).replace( tsfRegex.wild0More, '\\S*' );
+						try {
+							// use try/catch just in case RegExp is invalid
+							regex = new RegExp( data.isMatch ? query : '^' + query + '$', c.widgetOptions.filter_ignoreCase ? 'i' : '' );
+							// look for an exact match with the 'and' unless the 'filter-match' class is found
+							result = ( regex.test( data2.exact ) || tsf.processTypes( c, data2, vars ) );
+							if ( indx === 0 ) {
+								filterMatched = result;
+							} else {
+								filterMatched = filterMatched && result;
+							}
+						} catch ( error ) {
+							return null;
+						}
+					}
+					// may be null from processing types
+					return filterMatched || false;
+				}
+				return null;
+			},
+			// Look for regex
+			regex: function( c, data ) {
+				if ( tsfRegex.regex.test( data.filter ) ) {
+					var matches,
+						// cache regex per column for optimal speed
+						regex = data.filter_regexCache[ data.index ] || tsfRegex.regex.exec( data.filter ),
+						isRegex = regex instanceof RegExp;
+					try {
+						if ( !isRegex ) {
+							// force case insensitive search if ignoreCase option set?
+							// if ( c.ignoreCase && !regex[2] ) { regex[2] = 'i'; }
+							data.filter_regexCache[ data.index ] = regex = new RegExp( regex[1], regex[2] );
+						}
+						matches = regex.test( data.exact );
+					} catch ( error ) {
+						matches = false;
+					}
+					return matches;
+				}
+				return null;
+			},
+			// Look for operators >, >=, < or <=
+			operators: function( c, data ) {
+				// ignore empty strings... because '' < 10 is true
+				if ( tsfRegex.operTest.test( data.iFilter ) && data.iExact !== '' ) {
+					var cachedValue, result, txt,
+						table = c.table,
+						parsed = data.parsed[ data.index ],
+						query = ts.formatFloat( data.iFilter.replace( tsfRegex.operators, '' ), table ),
+						parser = c.parsers[ data.index ] || {},
+						savedSearch = query;
+					// parse filter value in case we're comparing numbers ( dates )
+					if ( parsed || parser.type === 'numeric' ) {
+						txt = $.trim( '' + data.iFilter.replace( tsfRegex.operators, '' ) );
+						result = tsf.parseFilter( c, txt, data, true );
+						query = ( typeof result === 'number' && result !== '' && !isNaN( result ) ) ? result : query;
+					}
+					// iExact may be numeric - see issue #149;
+					// check if cached is defined, because sometimes j goes out of range? ( numeric columns )
+					if ( ( parsed || parser.type === 'numeric' ) && !isNaN( query ) &&
+						typeof data.cache !== 'undefined' ) {
+						cachedValue = data.cache;
+					} else {
+						txt = isNaN( data.iExact ) ? data.iExact.replace( ts.regex.nondigit, '' ) : data.iExact;
+						cachedValue = ts.formatFloat( txt, table );
+					}
+					if ( tsfRegex.gtTest.test( data.iFilter ) ) {
+						result = tsfRegex.gteTest.test( data.iFilter ) ? cachedValue >= query : cachedValue > query;
+					} else if ( tsfRegex.ltTest.test( data.iFilter ) ) {
+						result = tsfRegex.lteTest.test( data.iFilter ) ? cachedValue <= query : cachedValue < query;
+					}
+					// keep showing all rows if nothing follows the operator
+					if ( !result && savedSearch === '' ) {
+						result = true;
+					}
+					return result;
+				}
+				return null;
+			},
+			// Look for a not match
+			notMatch: function( c, data ) {
+				if ( tsfRegex.notTest.test( data.iFilter ) ) {
+					var indx,
+						txt = data.iFilter.replace( '!', '' ),
+						filter = tsf.parseFilter( c, txt, data ) || '';
+					if ( tsfRegex.exact.test( filter ) ) {
+						// look for exact not matches - see #628
+						filter = filter.replace( tsfRegex.exact, '' );
+						return filter === '' ? true : $.trim( filter ) !== data.iExact;
+					} else {
+						indx = data.iExact.search( $.trim( filter ) );
+						return filter === '' ? true :
+							// return true if not found
+							data.anyMatch ? indx < 0 :
+							// return false if found
+							!( c.widgetOptions.filter_startsWith ? indx === 0 : indx >= 0 );
+					}
+				}
+				return null;
+			},
+			// Look for quotes or equals to get an exact match; ignore type since iExact could be numeric
+			exact: function( c, data ) {
+				/*jshint eqeqeq:false */
+				if ( tsfRegex.exact.test( data.iFilter ) ) {
+					var txt = data.iFilter.replace( tsfRegex.exact, '' ),
+						filter = tsf.parseFilter( c, txt, data ) || '';
+					return data.anyMatch ? $.inArray( filter, data.rowArray ) >= 0 : filter == data.iExact;
+				}
+				return null;
+			},
+			// Look for a range ( using ' to ' or ' - ' ) - see issue #166; thanks matzhu!
+			range : function( c, data ) {
+				if ( tsfRegex.toTest.test( data.iFilter ) ) {
+					var result, tmp, range1, range2,
+						table = c.table,
+						index = data.index,
+						parsed = data.parsed[index],
+						// make sure the dash is for a range and not indicating a negative number
+						query = data.iFilter.split( tsfRegex.toSplit );
+
+					tmp = query[0].replace( ts.regex.nondigit, '' ) || '';
+					range1 = ts.formatFloat( tsf.parseFilter( c, tmp, data ), table );
+					tmp = query[1].replace( ts.regex.nondigit, '' ) || '';
+					range2 = ts.formatFloat( tsf.parseFilter( c, tmp, data ), table );
+					// parse filter value in case we're comparing numbers ( dates )
+					if ( parsed || c.parsers[ index ].type === 'numeric' ) {
+						result = c.parsers[ index ].format( '' + query[0], table, c.$headers.eq( index ), index );
+						range1 = ( result !== '' && !isNaN( result ) ) ? result : range1;
+						result = c.parsers[ index ].format( '' + query[1], table, c.$headers.eq( index ), index );
+						range2 = ( result !== '' && !isNaN( result ) ) ? result : range2;
+					}
+					if ( ( parsed || c.parsers[ index ].type === 'numeric' ) && !isNaN( range1 ) && !isNaN( range2 ) ) {
+						result = data.cache;
+					} else {
+						tmp = isNaN( data.iExact ) ? data.iExact.replace( ts.regex.nondigit, '' ) : data.iExact;
+						result = ts.formatFloat( tmp, table );
+					}
+					if ( range1 > range2 ) {
+						tmp = range1; range1 = range2; range2 = tmp; // swap
+					}
+					return ( result >= range1 && result <= range2 ) || ( range1 === '' || range2 === '' );
+				}
+				return null;
+			},
+			// Look for wild card: ? = single, * = multiple, or | = logical OR
+			wild : function( c, data ) {
+				if ( tsfRegex.wildOrTest.test( data.iFilter ) ) {
+					var query = '' + ( tsf.parseFilter( c, data.iFilter, data ) || '' );
+					// look for an exact match with the 'or' unless the 'filter-match' class is found
+					if ( !tsfRegex.wildTest.test( query ) && data.nestedFilters ) {
+						query = data.isMatch ? query : '^(' + query + ')$';
+					}
+					// parsing the filter may not work properly when using wildcards =/
+					try {
+						return new RegExp(
+							query.replace( tsfRegex.wild01, '\\S{1}' ).replace( tsfRegex.wild0More, '\\S*' ),
+							c.widgetOptions.filter_ignoreCase ? 'i' : ''
+						)
+						.test( data.exact );
+					} catch ( error ) {
+						return null;
+					}
+				}
+				return null;
+			},
+			// fuzzy text search; modified from https://github.com/mattyork/fuzzy ( MIT license )
+			fuzzy: function( c, data ) {
+				if ( tsfRegex.fuzzyTest.test( data.iFilter ) ) {
+					var indx,
+						patternIndx = 0,
+						len = data.iExact.length,
+						txt = data.iFilter.slice( 1 ),
+						pattern = tsf.parseFilter( c, txt, data ) || '';
+					for ( indx = 0; indx < len; indx++ ) {
+						if ( data.iExact[ indx ] === pattern[ patternIndx ] ) {
+							patternIndx += 1;
+						}
+					}
+					return patternIndx === pattern.length;
+				}
+				return null;
+			}
+		},
+		init: function( table ) {
+			// filter language options
+			ts.language = $.extend( true, {}, {
+				to  : 'to',
+				or  : 'or',
+				and : 'and'
+			}, ts.language );
+
+			var options, string, txt, $header, column, val, fxn, noSelect,
+				c = table.config,
+				wo = c.widgetOptions;
+			c.$table.addClass( 'hasFilters' );
+			c.lastSearch = [];
+
+			// define timers so using clearTimeout won't cause an undefined error
+			wo.filter_searchTimer = null;
+			wo.filter_initTimer = null;
+			wo.filter_formatterCount = 0;
+			wo.filter_formatterInit = [];
+			wo.filter_anyColumnSelector = '[data-column="all"],[data-column="any"]';
+			wo.filter_multipleColumnSelector = '[data-column*="-"],[data-column*=","]';
+
+			val = '\\{' + tsfRegex.query + '\\}';
+			$.extend( tsfRegex, {
+				child : new RegExp( c.cssChildRow ),
+				filtered : new RegExp( wo.filter_filteredRow ),
+				alreadyFiltered : new RegExp( '(\\s+(' + ts.language.or + '|-|' + ts.language.to + ')\\s+)', 'i' ),
+				toTest : new RegExp( '\\s+(-|' + ts.language.to + ')\\s+', 'i' ),
+				toSplit : new RegExp( '(?:\\s+(?:-|' + ts.language.to + ')\\s+)', 'gi' ),
+				andTest : new RegExp( '\\s+(' + ts.language.and + '|&&)\\s+', 'i' ),
+				andSplit : new RegExp( '(?:\\s+(?:' + ts.language.and + '|&&)\\s+)', 'gi' ),
+				orTest : new RegExp( '(\\||\\s+' + ts.language.or + '\\s+)', 'i' ),
+				orSplit : new RegExp( '(?:\\s+(?:' + ts.language.or + ')\\s+|\\|)', 'gi' ),
+				iQuery : new RegExp( val, 'i' ),
+				igQuery : new RegExp( val, 'ig' ),
+				operTest : /^[<>]=?/,
+				gtTest  : />/,
+				gteTest : />=/,
+				ltTest  : /</,
+				lteTest : /<=/,
+				notTest : /^\!/,
+				wildOrTest : /[\?\*\|]/,
+				wildTest : /\?\*/,
+				fuzzyTest : /^~/,
+				exactTest : /[=\"\|!]/
+			});
+
+			// don't build filter row if columnFilters is false or all columns are set to 'filter-false'
+			// see issue #156
+			val = c.$headers.filter( '.filter-false, .parser-false' ).length;
+			if ( wo.filter_columnFilters !== false && val !== c.$headers.length ) {
+				// build filter row
+				tsf.buildRow( table, c, wo );
+			}
+
+			txt = 'addRows updateCell update updateRows updateComplete appendCache filterReset ' +
+				'filterAndSortReset filterResetSaved filterEnd search '.split( ' ' ).join( c.namespace + 'filter ' );
+			c.$table.bind( txt, function( event, filter ) {
+				val = wo.filter_hideEmpty &&
+					$.isEmptyObject( c.cache ) &&
+					!( c.delayInit && event.type === 'appendCache' );
+				// hide filter row using the 'filtered' class name
+				c.$table.find( '.' + tscss.filterRow ).toggleClass( wo.filter_filteredRow, val ); // fixes #450
+				if ( !/(search|filter)/.test( event.type ) ) {
+					event.stopPropagation();
+					tsf.buildDefault( table, true );
+				}
+				// Add filterAndSortReset - see #1361
+				if ( event.type === 'filterReset' || event.type === 'filterAndSortReset' ) {
+					c.$table.find( '.' + tscss.filter ).add( wo.filter_$externalFilters ).val( '' );
+					if ( event.type === 'filterAndSortReset' ) {
+						ts.sortReset( this.config, function() {
+							tsf.searching( table, [] );
+						});
+					} else {
+						tsf.searching( table, [] );
+					}
+				} else if ( event.type === 'filterResetSaved' ) {
+					ts.storage( table, 'tablesorter-filters', '' );
+				} else if ( event.type === 'filterEnd' ) {
+					tsf.buildDefault( table, true );
+				} else {
+					// send false argument to force a new search; otherwise if the filter hasn't changed,
+					// it will return
+					filter = event.type === 'search' ? filter :
+						event.type === 'updateComplete' ? c.$table.data( 'lastSearch' ) : '';
+					if ( /(update|add)/.test( event.type ) && event.type !== 'updateComplete' ) {
+						// force a new search since content has changed
+						c.lastCombinedFilter = null;
+						c.lastSearch = [];
+						// update filterFormatters after update (& small delay) - Fixes #1237
+						setTimeout(function(){
+							c.$table.triggerHandler( 'filterFomatterUpdate' );
+						}, 100);
+					}
+					// pass true ( skipFirst ) to prevent the tablesorter.setFilters function from skipping the first
+					// input ensures all inputs are updated when a search is triggered on the table
+					// $( 'table' ).trigger( 'search', [...] );
+					tsf.searching( table, filter, true );
+				}
+				return false;
+			});
+
+			// reset button/link
+			if ( wo.filter_reset ) {
+				if ( wo.filter_reset instanceof $ ) {
+					// reset contains a jQuery object, bind to it
+					wo.filter_reset.click( function() {
+						c.$table.triggerHandler( 'filterReset' );
+					});
+				} else if ( $( wo.filter_reset ).length ) {
+					// reset is a jQuery selector, use event delegation
+					$( document )
+						.undelegate( wo.filter_reset, 'click' + c.namespace + 'filter' )
+						.delegate( wo.filter_reset, 'click' + c.namespace + 'filter', function() {
+							// trigger a reset event, so other functions ( filter_formatter ) know when to reset
+							c.$table.triggerHandler( 'filterReset' );
+						});
+				}
+			}
+			if ( wo.filter_functions ) {
+				for ( column = 0; column < c.columns; column++ ) {
+					fxn = ts.getColumnData( table, wo.filter_functions, column );
+					if ( fxn ) {
+						// remove 'filter-select' from header otherwise the options added here are replaced with
+						// all options
+						$header = c.$headerIndexed[ column ].removeClass( 'filter-select' );
+						// don't build select if 'filter-false' or 'parser-false' set
+						noSelect = !( $header.hasClass( 'filter-false' ) || $header.hasClass( 'parser-false' ) );
+						options = '';
+						if ( fxn === true && noSelect ) {
+							tsf.buildSelect( table, column );
+						} else if ( typeof fxn === 'object' && noSelect ) {
+							// add custom drop down list
+							for ( string in fxn ) {
+								if ( typeof string === 'string' ) {
+									options += options === '' ?
+										'<option value="">' +
+											( $header.data( 'placeholder' ) ||
+												$header.attr( 'data-placeholder' ) ||
+												wo.filter_placeholder.select ||
+												''
+											) +
+										'</option>' : '';
+									val = string;
+									txt = string;
+									if ( string.indexOf( wo.filter_selectSourceSeparator ) >= 0 ) {
+										val = string.split( wo.filter_selectSourceSeparator );
+										txt = val[1];
+										val = val[0];
+									}
+									options += '<option ' +
+										( txt === val ? '' : 'data-function-name="' + string + '" ' ) +
+										'value="' + val + '">' + txt + '</option>';
+								}
+							}
+							c.$table
+								.find( 'thead' )
+								.find( 'select.' + tscss.filter + '[data-column="' + column + '"]' )
+								.append( options );
+							txt = wo.filter_selectSource;
+							fxn = typeof txt === 'function' ? true : ts.getColumnData( table, txt, column );
+							if ( fxn ) {
+								// updating so the extra options are appended
+								tsf.buildSelect( c.table, column, '', true, $header.hasClass( wo.filter_onlyAvail ) );
+							}
+						}
+					}
+				}
+			}
+			// not really updating, but if the column has both the 'filter-select' class &
+			// filter_functions set to true, it would append the same options twice.
+			tsf.buildDefault( table, true );
+
+			tsf.bindSearch( table, c.$table.find( '.' + tscss.filter ), true );
+			if ( wo.filter_external ) {
+				tsf.bindSearch( table, wo.filter_external );
+			}
+
+			if ( wo.filter_hideFilters ) {
+				tsf.hideFilters( c );
+			}
+
+			// show processing icon
+			if ( c.showProcessing ) {
+				txt = 'filterStart filterEnd '.split( ' ' ).join( c.namespace + 'filter ' );
+				c.$table
+					.unbind( txt.replace( ts.regex.spaces, ' ' ) )
+					.bind( txt, function( event, columns ) {
+					// only add processing to certain columns to all columns
+					$header = ( columns ) ?
+						c.$table
+							.find( '.' + tscss.header )
+							.filter( '[data-column]' )
+							.filter( function() {
+								return columns[ $( this ).data( 'column' ) ] !== '';
+							}) : '';
+					ts.isProcessing( table, event.type === 'filterStart', columns ? $header : '' );
+				});
+			}
+
+			// set filtered rows count ( intially unfiltered )
+			c.filteredRows = c.totalRows;
+
+			// add default values
+			txt = 'tablesorter-initialized pagerBeforeInitialized '.split( ' ' ).join( c.namespace + 'filter ' );
+			c.$table
+			.unbind( txt.replace( ts.regex.spaces, ' ' ) )
+			.bind( txt, function() {
+				tsf.completeInit( this );
+			});
+			// if filter widget is added after pager has initialized; then set filter init flag
+			if ( c.pager && c.pager.initialized && !wo.filter_initialized ) {
+				c.$table.triggerHandler( 'filterFomatterUpdate' );
+				setTimeout( function() {
+					tsf.filterInitComplete( c );
+				}, 100 );
+			} else if ( !wo.filter_initialized ) {
+				tsf.completeInit( table );
+			}
+		},
+		completeInit: function( table ) {
+			// redefine 'c' & 'wo' so they update properly inside this callback
+			var c = table.config,
+				wo = c.widgetOptions,
+				filters = tsf.setDefaults( table, c, wo ) || [];
+			if ( filters.length ) {
+				// prevent delayInit from triggering a cache build if filters are empty
+				if ( !( c.delayInit && filters.join( '' ) === '' ) ) {
+					ts.setFilters( table, filters, true );
+				}
+			}
+			c.$table.triggerHandler( 'filterFomatterUpdate' );
+			// trigger init after setTimeout to prevent multiple filterStart/End/Init triggers
+			setTimeout( function() {
+				if ( !wo.filter_initialized ) {
+					tsf.filterInitComplete( c );
+				}
+			}, 100 );
+		},
+
+		// $cell parameter, but not the config, is passed to the filter_formatters,
+		// so we have to work with it instead
+		formatterUpdated: function( $cell, column ) {
+			// prevent error if $cell is undefined - see #1056
+			var $table = $cell && $cell.closest( 'table' );
+			var config = $table.length && $table[0].config,
+				wo = config && config.widgetOptions;
+			if ( wo && !wo.filter_initialized ) {
+				// add updates by column since this function
+				// may be called numerous times before initialization
+				wo.filter_formatterInit[ column ] = 1;
+			}
+		},
+		filterInitComplete: function( c ) {
+			var indx, len,
+				wo = c.widgetOptions,
+				count = 0,
+				completed = function() {
+					wo.filter_initialized = true;
+					// update lastSearch - it gets cleared often
+					c.lastSearch = c.$table.data( 'lastSearch' );
+					c.$table.triggerHandler( 'filterInit', c );
+					tsf.findRows( c.table, c.lastSearch || [] );
+				};
+			if ( $.isEmptyObject( wo.filter_formatter ) ) {
+				completed();
+			} else {
+				len = wo.filter_formatterInit.length;
+				for ( indx = 0; indx < len; indx++ ) {
+					if ( wo.filter_formatterInit[ indx ] === 1 ) {
+						count++;
+					}
+				}
+				clearTimeout( wo.filter_initTimer );
+				if ( !wo.filter_initialized && count === wo.filter_formatterCount ) {
+					// filter widget initialized
+					completed();
+				} else if ( !wo.filter_initialized ) {
+					// fall back in case a filter_formatter doesn't call
+					// $.tablesorter.filter.formatterUpdated( $cell, column ), and the count is off
+					wo.filter_initTimer = setTimeout( function() {
+						completed();
+					}, 500 );
+				}
+			}
+		},
+		// encode or decode filters for storage; see #1026
+		processFilters: function( filters, encode ) {
+			var indx,
+				// fixes #1237; previously returning an encoded "filters" value
+				result = [],
+				mode = encode ? encodeURIComponent : decodeURIComponent,
+				len = filters.length;
+			for ( indx = 0; indx < len; indx++ ) {
+				if ( filters[ indx ] ) {
+					result[ indx ] = mode( filters[ indx ] );
+				}
+			}
+			return result;
+		},
+		setDefaults: function( table, c, wo ) {
+			var isArray, saved, indx, col, $filters,
+				// get current ( default ) filters
+				filters = ts.getFilters( table ) || [];
+			if ( wo.filter_saveFilters && ts.storage ) {
+				saved = ts.storage( table, 'tablesorter-filters' ) || [];
+				isArray = $.isArray( saved );
+				// make sure we're not just getting an empty array
+				if ( !( isArray && saved.join( '' ) === '' || !isArray ) ) {
+					filters = tsf.processFilters( saved );
+				}
+			}
+			// if no filters saved, then check default settings
+			if ( filters.join( '' ) === '' ) {
+				// allow adding default setting to external filters
+				$filters = c.$headers.add( wo.filter_$externalFilters )
+					.filter( '[' + wo.filter_defaultAttrib + ']' );
+				for ( indx = 0; indx <= c.columns; indx++ ) {
+					// include data-column='all' external filters
+					col = indx === c.columns ? 'all' : indx;
+					filters[ indx ] = $filters
+						.filter( '[data-column="' + col + '"]' )
+						.attr( wo.filter_defaultAttrib ) || filters[indx] || '';
+				}
+			}
+			c.$table.data( 'lastSearch', filters );
+			return filters;
+		},
+		parseFilter: function( c, filter, data, parsed ) {
+			return parsed || data.parsed[ data.index ] ?
+				c.parsers[ data.index ].format( filter, c.table, [], data.index ) :
+				filter;
+		},
+		buildRow: function( table, c, wo ) {
+			var $filter, col, column, $header, makeSelect, disabled, name, ffxn, tmp,
+				// c.columns defined in computeThIndexes()
+				cellFilter = wo.filter_cellFilter,
+				columns = c.columns,
+				arry = $.isArray( cellFilter ),
+				buildFilter = '<tr role="row" class="' + tscss.filterRow + ' ' + c.cssIgnoreRow + '">';
+			for ( column = 0; column < columns; column++ ) {
+				if ( c.$headerIndexed[ column ].length ) {
+					// account for entire column set with colspan. See #1047
+					tmp = c.$headerIndexed[ column ] && c.$headerIndexed[ column ][0].colSpan || 0;
+					if ( tmp > 1 ) {
+						buildFilter += '<td data-column="' + column + '-' + ( column + tmp - 1 ) + '" colspan="' + tmp + '"';
+					} else {
+						buildFilter += '<td data-column="' + column + '"';
+					}
+					if ( arry ) {
+						buildFilter += ( cellFilter[ column ] ? ' class="' + cellFilter[ column ] + '"' : '' );
+					} else {
+						buildFilter += ( cellFilter !== '' ? ' class="' + cellFilter + '"' : '' );
+					}
+					buildFilter += '></td>';
+				}
+			}
+			c.$filters = $( buildFilter += '</tr>' )
+				.appendTo( c.$table.children( 'thead' ).eq( 0 ) )
+				.children( 'td' );
+			// build each filter input
+			for ( column = 0; column < columns; column++ ) {
+				disabled = false;
+				// assuming last cell of a column is the main column
+				$header = c.$headerIndexed[ column ];
+				if ( $header && $header.length ) {
+					// $filter = c.$filters.filter( '[data-column="' + column + '"]' );
+					$filter = tsf.getColumnElm( c, c.$filters, column );
+					ffxn = ts.getColumnData( table, wo.filter_functions, column );
+					makeSelect = ( wo.filter_functions && ffxn && typeof ffxn !== 'function' ) ||
+						$header.hasClass( 'filter-select' );
+					// get data from jQuery data, metadata, headers option or header class name
+					col = ts.getColumnData( table, c.headers, column );
+					disabled = ts.getData( $header[0], col, 'filter' ) === 'false' ||
+						ts.getData( $header[0], col, 'parser' ) === 'false';
+
+					if ( makeSelect ) {
+						buildFilter = $( '<select>' ).appendTo( $filter );
+					} else {
+						ffxn = ts.getColumnData( table, wo.filter_formatter, column );
+						if ( ffxn ) {
+							wo.filter_formatterCount++;
+							buildFilter = ffxn( $filter, column );
+							// no element returned, so lets go find it
+							if ( buildFilter && buildFilter.length === 0 ) {
+								buildFilter = $filter.children( 'input' );
+							}
+							// element not in DOM, so lets attach it
+							if ( buildFilter && ( buildFilter.parent().length === 0 ||
+								( buildFilter.parent().length && buildFilter.parent()[0] !== $filter[0] ) ) ) {
+								$filter.append( buildFilter );
+							}
+						} else {
+							buildFilter = $( '<input type="search">' ).appendTo( $filter );
+						}
+						if ( buildFilter ) {
+							tmp = $header.data( 'placeholder' ) ||
+								$header.attr( 'data-placeholder' ) ||
+								wo.filter_placeholder.search || '';
+							buildFilter.attr( 'placeholder', tmp );
+						}
+					}
+					if ( buildFilter ) {
+						// add filter class name
+						name = ( $.isArray( wo.filter_cssFilter ) ?
+							( typeof wo.filter_cssFilter[column] !== 'undefined' ? wo.filter_cssFilter[column] || '' : '' ) :
+							wo.filter_cssFilter ) || '';
+						// copy data-column from table cell (it will include colspan)
+						buildFilter.addClass( tscss.filter + ' ' + name ).attr( 'data-column', $filter.attr( 'data-column' ) );
+						if ( disabled ) {
+							buildFilter.attr( 'placeholder', '' ).addClass( tscss.filterDisabled )[0].disabled = true;
+						}
+					}
+				}
+			}
+		},
+		bindSearch: function( table, $el, internal ) {
+			table = $( table )[0];
+			$el = $( $el ); // allow passing a selector string
+			if ( !$el.length ) { return; }
+			var tmp,
+				c = table.config,
+				wo = c.widgetOptions,
+				namespace = c.namespace + 'filter',
+				$ext = wo.filter_$externalFilters;
+			if ( internal !== true ) {
+				// save anyMatch element
+				tmp = wo.filter_anyColumnSelector + ',' + wo.filter_multipleColumnSelector;
+				wo.filter_$anyMatch = $el.filter( tmp );
+				if ( $ext && $ext.length ) {
+					wo.filter_$externalFilters = wo.filter_$externalFilters.add( $el );
+				} else {
+					wo.filter_$externalFilters = $el;
+				}
+				// update values ( external filters added after table initialization )
+				ts.setFilters( table, c.$table.data( 'lastSearch' ) || [], internal === false );
+			}
+			// unbind events
+			tmp = ( 'keypress keyup keydown search change input '.split( ' ' ).join( namespace + ' ' ) );
+			$el
+			// use data attribute instead of jQuery data since the head is cloned without including
+			// the data/binding
+			.attr( 'data-lastSearchTime', new Date().getTime() )
+			.unbind( tmp.replace( ts.regex.spaces, ' ' ) )
+			.bind( 'keydown' + namespace, function( event ) {
+				if ( event.which === tskeyCodes.escape && !table.config.widgetOptions.filter_resetOnEsc ) {
+					// prevent keypress event
+					return false;
+				}
+			})
+			.bind( 'keyup' + namespace, function( event ) {
+				wo = table.config.widgetOptions; // make sure "wo" isn't cached
+				var column = parseInt( $( this ).attr( 'data-column' ), 10 ),
+					liveSearch = typeof wo.filter_liveSearch === 'boolean' ? wo.filter_liveSearch :
+						ts.getColumnData( table, wo.filter_liveSearch, column );
+				if ( typeof liveSearch === 'undefined' ) {
+					liveSearch = wo.filter_liveSearch.fallback || false;
+				}
+				$( this ).attr( 'data-lastSearchTime', new Date().getTime() );
+				// emulate what webkit does.... escape clears the filter
+				if ( event.which === tskeyCodes.escape ) {
+					// make sure to restore the last value on escape
+					this.value = wo.filter_resetOnEsc ? '' : c.lastSearch[column];
+					// don't return if the search value is empty ( all rows need to be revealed )
+				} else if ( this.value !== '' && (
+					// liveSearch can contain a min value length; ignore arrow and meta keys, but allow backspace
+					( typeof liveSearch === 'number' && this.value.length < liveSearch ) ||
+					// let return & backspace continue on, but ignore arrows & non-valid characters
+					( event.which !== tskeyCodes.enter && event.which !== tskeyCodes.backSpace &&
+						( event.which < tskeyCodes.space || ( event.which >= tskeyCodes.left && event.which <= tskeyCodes.down ) ) ) ) ) {
+					return;
+					// live search
+				} else if ( liveSearch === false ) {
+					if ( this.value !== '' && event.which !== tskeyCodes.enter ) {
+						return;
+					}
+				}
+				// change event = no delay; last true flag tells getFilters to skip newest timed input
+				tsf.searching( table, true, true, column );
+			})
+			// include change for select - fixes #473
+			.bind( 'search change keypress input blur '.split( ' ' ).join( namespace + ' ' ), function( event ) {
+				// don't get cached data, in case data-column changes dynamically
+				var column = parseInt( $( this ).attr( 'data-column' ), 10 ),
+					eventType = event.type,
+					liveSearch = typeof wo.filter_liveSearch === 'boolean' ?
+						wo.filter_liveSearch :
+						ts.getColumnData( table, wo.filter_liveSearch, column );
+				if ( table.config.widgetOptions.filter_initialized &&
+					// immediate search if user presses enter
+					( event.which === tskeyCodes.enter ||
+						// immediate search if a "search" or "blur" is triggered on the input
+						( eventType === 'search' || eventType === 'blur' ) ||
+						// change & input events must be ignored if liveSearch !== true
+						( eventType === 'change' || eventType === 'input' ) &&
+						// prevent search if liveSearch is a number
+						( liveSearch === true || liveSearch !== true && event.target.nodeName !== 'INPUT' ) &&
+						// don't allow 'change' or 'input' event to process if the input value
+						// is the same - fixes #685
+						this.value !== c.lastSearch[column]
+					)
+				) {
+					event.preventDefault();
+					// init search with no delay
+					$( this ).attr( 'data-lastSearchTime', new Date().getTime() );
+					tsf.searching( table, eventType !== 'keypress', true, column );
+				}
+			});
+		},
+		searching: function( table, filter, skipFirst, column ) {
+			var liveSearch,
+				wo = table.config.widgetOptions;
+			if (typeof column === 'undefined') {
+				// no delay
+				liveSearch = false;
+			} else {
+				liveSearch = typeof wo.filter_liveSearch === 'boolean' ?
+					wo.filter_liveSearch :
+					// get column setting, or set to fallback value, or default to false
+					ts.getColumnData( table, wo.filter_liveSearch, column );
+				if ( typeof liveSearch === 'undefined' ) {
+					liveSearch = wo.filter_liveSearch.fallback || false;
+				}
+			}
+			clearTimeout( wo.filter_searchTimer );
+			if ( typeof filter === 'undefined' || filter === true ) {
+				// delay filtering
+				wo.filter_searchTimer = setTimeout( function() {
+					tsf.checkFilters( table, filter, skipFirst );
+				}, liveSearch ? wo.filter_searchDelay : 10 );
+			} else {
+				// skip delay
+				tsf.checkFilters( table, filter, skipFirst );
+			}
+		},
+		equalFilters: function (c, filter1, filter2) {
+			var indx,
+				f1 = [],
+				f2 = [],
+				len = c.columns + 1; // add one to include anyMatch filter
+			filter1 = $.isArray(filter1) ? filter1 : [];
+			filter2 = $.isArray(filter2) ? filter2 : [];
+			for (indx = 0; indx < len; indx++) {
+				f1[indx] = filter1[indx] || '';
+				f2[indx] = filter2[indx] || '';
+			}
+			return f1.join(',') === f2.join(',');
+		},
+		checkFilters: function( table, filter, skipFirst ) {
+			var c = table.config,
+				wo = c.widgetOptions,
+				filterArray = $.isArray( filter ),
+				filters = ( filterArray ) ? filter : ts.getFilters( table, true ),
+				currentFilters = filters || []; // current filter values
+			// prevent errors if delay init is set
+			if ( $.isEmptyObject( c.cache ) ) {
+				// update cache if delayInit set & pager has initialized ( after user initiates a search )
+				if ( c.delayInit && ( !c.pager || c.pager && c.pager.initialized ) ) {
+					ts.updateCache( c, function() {
+						tsf.checkFilters( table, false, skipFirst );
+					});
+				}
+				return;
+			}
+			// add filter array back into inputs
+			if ( filterArray ) {
+				ts.setFilters( table, filters, false, skipFirst !== true );
+				if ( !wo.filter_initialized ) {
+					c.lastSearch = [];
+					c.lastCombinedFilter = '';
+				}
+			}
+			if ( wo.filter_hideFilters ) {
+				// show/hide filter row as needed
+				c.$table
+					.find( '.' + tscss.filterRow )
+					.triggerHandler( tsf.hideFiltersCheck( c ) ? 'mouseleave' : 'mouseenter' );
+			}
+			// return if the last search is the same; but filter === false when updating the search
+			// see example-widget-filter.html filter toggle buttons
+			if ( tsf.equalFilters(c, c.lastSearch, currentFilters) && filter !== false ) {
+				return;
+			} else if ( filter === false ) {
+				// force filter refresh
+				c.lastCombinedFilter = '';
+				c.lastSearch = [];
+			}
+			// define filter inside it is false
+			filters = filters || [];
+			// convert filters to strings - see #1070
+			filters = Array.prototype.map ?
+				filters.map( String ) :
+				// for IE8 & older browsers - maybe not the best method
+				filters.join( '\ufffd' ).split( '\ufffd' );
+
+			if ( wo.filter_initialized ) {
+				c.$table.triggerHandler( 'filterStart', [ filters ] );
+			}
+			if ( c.showProcessing ) {
+				// give it time for the processing icon to kick in
+				setTimeout( function() {
+					tsf.findRows( table, filters, currentFilters );
+					return false;
+				}, 30 );
+			} else {
+				tsf.findRows( table, filters, currentFilters );
+				return false;
+			}
+		},
+		hideFiltersCheck: function( c ) {
+			if (typeof c.widgetOptions.filter_hideFilters === 'function') {
+				var val = c.widgetOptions.filter_hideFilters( c );
+				if (typeof val === 'boolean') {
+					return val;
+				}
+			}
+			return ts.getFilters( c.$table ).join( '' ) === '';
+		},
+		hideFilters: function( c, $table ) {
+			var timer;
+			( $table || c.$table )
+				.find( '.' + tscss.filterRow )
+				.addClass( tscss.filterRowHide )
+				.bind( 'mouseenter mouseleave', function( e ) {
+					// save event object - http://bugs.jquery.com/ticket/12140
+					var event = e,
+						$row = $( this );
+					clearTimeout( timer );
+					timer = setTimeout( function() {
+						if ( /enter|over/.test( event.type ) ) {
+							$row.removeClass( tscss.filterRowHide );
+						} else {
+							// don't hide if input has focus
+							// $( ':focus' ) needs jQuery 1.6+
+							if ( $( document.activeElement ).closest( 'tr' )[0] !== $row[0] ) {
+								// don't hide row if any filter has a value
+								$row.toggleClass( tscss.filterRowHide, tsf.hideFiltersCheck( c ) );
+							}
+						}
+					}, 200 );
+				})
+				.find( 'input, select' ).bind( 'focus blur', function( e ) {
+					var event = e,
+						$row = $( this ).closest( 'tr' );
+					clearTimeout( timer );
+					timer = setTimeout( function() {
+						clearTimeout( timer );
+						// don't hide row if any filter has a value
+						$row.toggleClass( tscss.filterRowHide, tsf.hideFiltersCheck( c ) && event.type !== 'focus' );
+					}, 200 );
+				});
+		},
+		defaultFilter: function( filter, mask ) {
+			if ( filter === '' ) { return filter; }
+			var regex = tsfRegex.iQuery,
+				maskLen = mask.match( tsfRegex.igQuery ).length,
+				query = maskLen > 1 ? $.trim( filter ).split( /\s/ ) : [ $.trim( filter ) ],
+				len = query.length - 1,
+				indx = 0,
+				val = mask;
+			if ( len < 1 && maskLen > 1 ) {
+				// only one 'word' in query but mask has >1 slots
+				query[1] = query[0];
+			}
+			// replace all {query} with query words...
+			// if query = 'Bob', then convert mask from '!{query}' to '!Bob'
+			// if query = 'Bob Joe Frank', then convert mask '{q} OR {q}' to 'Bob OR Joe OR Frank'
+			while ( regex.test( val ) ) {
+				val = val.replace( regex, query[indx++] || '' );
+				if ( regex.test( val ) && indx < len && ( query[indx] || '' ) !== '' ) {
+					val = mask.replace( regex, val );
+				}
+			}
+			return val;
+		},
+		getLatestSearch: function( $input ) {
+			if ( $input ) {
+				return $input.sort( function( a, b ) {
+					return $( b ).attr( 'data-lastSearchTime' ) - $( a ).attr( 'data-lastSearchTime' );
+				});
+			}
+			return $input || $();
+		},
+		findRange: function( c, val, ignoreRanges ) {
+			// look for multiple columns '1-3,4-6,8' in data-column
+			var temp, ranges, range, start, end, singles, i, indx, len,
+				columns = [];
+			if ( /^[0-9]+$/.test( val ) ) {
+				// always return an array
+				return [ parseInt( val, 10 ) ];
+			}
+			// process column range
+			if ( !ignoreRanges && /-/.test( val ) ) {
+				ranges = val.match( /(\d+)\s*-\s*(\d+)/g );
+				len = ranges ? ranges.length : 0;
+				for ( indx = 0; indx < len; indx++ ) {
+					range = ranges[indx].split( /\s*-\s*/ );
+					start = parseInt( range[0], 10 ) || 0;
+					end = parseInt( range[1], 10 ) || ( c.columns - 1 );
+					if ( start > end ) {
+						temp = start; start = end; end = temp; // swap
+					}
+					if ( end >= c.columns ) {
+						end = c.columns - 1;
+					}
+					for ( ; start <= end; start++ ) {
+						columns[ columns.length ] = start;
+					}
+					// remove processed range from val
+					val = val.replace( ranges[ indx ], '' );
+				}
+			}
+			// process single columns
+			if ( !ignoreRanges && /,/.test( val ) ) {
+				singles = val.split( /\s*,\s*/ );
+				len = singles.length;
+				for ( i = 0; i < len; i++ ) {
+					if ( singles[ i ] !== '' ) {
+						indx = parseInt( singles[ i ], 10 );
+						if ( indx < c.columns ) {
+							columns[ columns.length ] = indx;
+						}
+					}
+				}
+			}
+			// return all columns
+			if ( !columns.length ) {
+				for ( indx = 0; indx < c.columns; indx++ ) {
+					columns[ columns.length ] = indx;
+				}
+			}
+			return columns;
+		},
+		getColumnElm: function( c, $elements, column ) {
+			// data-column may contain multiple columns '1-3,5-6,8'
+			// replaces: c.$filters.filter( '[data-column="' + column + '"]' );
+			return $elements.filter( function() {
+				var cols = tsf.findRange( c, $( this ).attr( 'data-column' ) );
+				return $.inArray( column, cols ) > -1;
+			});
+		},
+		multipleColumns: function( c, $input ) {
+			// look for multiple columns '1-3,4-6,8' in data-column
+			var wo = c.widgetOptions,
+				// only target 'all' column inputs on initialization
+				// & don't target 'all' column inputs if they don't exist
+				targets = wo.filter_initialized || !$input.filter( wo.filter_anyColumnSelector ).length,
+				val = $.trim( tsf.getLatestSearch( $input ).attr( 'data-column' ) || '' );
+			return tsf.findRange( c, val, !targets );
+		},
+		processTypes: function( c, data, vars ) {
+			var ffxn,
+				filterMatched = null,
+				matches = null;
+			for ( ffxn in tsf.types ) {
+				if ( $.inArray( ffxn, vars.excludeMatch ) < 0 && matches === null ) {
+					matches = tsf.types[ffxn]( c, data, vars );
+					if ( matches !== null ) {
+						filterMatched = matches;
+					}
+				}
+			}
+			return filterMatched;
+		},
+		matchType: function( c, columnIndex ) {
+			var isMatch,
+				wo = c.widgetOptions,
+				$el = c.$headerIndexed[ columnIndex ];
+			// filter-exact > filter-match > filter_matchType for type
+			if ( $el.hasClass( 'filter-exact' ) ) {
+				isMatch = false;
+			} else if ( $el.hasClass( 'filter-match' ) ) {
+				isMatch = true;
+			} else {
+				// filter-select is not applied when filter_functions are used, so look for a select
+				if ( wo.filter_columnFilters ) {
+					$el = c.$filters
+						.find( '.' + tscss.filter )
+						.add( wo.filter_$externalFilters )
+						.filter( '[data-column="' + columnIndex + '"]' );
+				} else if ( wo.filter_$externalFilters ) {
+					$el = wo.filter_$externalFilters.filter( '[data-column="' + columnIndex + '"]' );
+				}
+				isMatch = $el.length ?
+					c.widgetOptions.filter_matchType[ ( $el[ 0 ].nodeName || '' ).toLowerCase() ] === 'match' :
+					// default to exact, if no inputs found
+					false;
+			}
+			return isMatch;
+		},
+		processRow: function( c, data, vars ) {
+			var result, filterMatched,
+				fxn, ffxn, txt,
+				wo = c.widgetOptions,
+				showRow = true,
+				hasAnyMatchInput = wo.filter_$anyMatch && wo.filter_$anyMatch.length,
+
+				// if wo.filter_$anyMatch data-column attribute is changed dynamically
+				// we don't want to do an "anyMatch" search on one column using data
+				// for the entire row - see #998
+				columnIndex = wo.filter_$anyMatch && wo.filter_$anyMatch.length ?
+					// look for multiple columns '1-3,4-6,8'
+					tsf.multipleColumns( c, wo.filter_$anyMatch ) :
+					[];
+			data.$cells = data.$row.children();
+			if ( data.anyMatchFlag && columnIndex.length > 1 || ( data.anyMatchFilter && !hasAnyMatchInput ) ) {
+				data.anyMatch = true;
+				data.isMatch = true;
+				data.rowArray = data.$cells.map( function( i ) {
+					if ( $.inArray( i, columnIndex ) > -1 || ( data.anyMatchFilter && !hasAnyMatchInput ) ) {
+						if ( data.parsed[ i ] ) {
+							txt = data.cacheArray[ i ];
+						} else {
+							txt = data.rawArray[ i ];
+							txt = $.trim( wo.filter_ignoreCase ? txt.toLowerCase() : txt );
+							if ( c.sortLocaleCompare ) {
+								txt = ts.replaceAccents( txt );
+							}
+						}
+						return txt;
+					}
+				}).get();
+				data.filter = data.anyMatchFilter;
+				data.iFilter = data.iAnyMatchFilter;
+				data.exact = data.rowArray.join( ' ' );
+				data.iExact = wo.filter_ignoreCase ? data.exact.toLowerCase() : data.exact;
+				data.cache = data.cacheArray.slice( 0, -1 ).join( ' ' );
+				vars.excludeMatch = vars.noAnyMatch;
+				filterMatched = tsf.processTypes( c, data, vars );
+				if ( filterMatched !== null ) {
+					showRow = filterMatched;
+				} else {
+					if ( wo.filter_startsWith ) {
+						showRow = false;
+						// data.rowArray may not contain all columns
+						columnIndex = Math.min( c.columns, data.rowArray.length );
+						while ( !showRow && columnIndex > 0 ) {
+							columnIndex--;
+							showRow = showRow || data.rowArray[ columnIndex ].indexOf( data.iFilter ) === 0;
+						}
+					} else {
+						showRow = ( data.iExact + data.childRowText ).indexOf( data.iFilter ) >= 0;
+					}
+				}
+				data.anyMatch = false;
+				// no other filters to process
+				if ( data.filters.join( '' ) === data.filter ) {
+					return showRow;
+				}
+			}
+
+			for ( columnIndex = 0; columnIndex < c.columns; columnIndex++ ) {
+				data.filter = data.filters[ columnIndex ];
+				data.index = columnIndex;
+
+				// filter types to exclude, per column
+				vars.excludeMatch = vars.excludeFilter[ columnIndex ];
+
+				// ignore if filter is empty or disabled
+				if ( data.filter ) {
+					data.cache = data.cacheArray[ columnIndex ];
+					result = data.parsed[ columnIndex ] ? data.cache : data.rawArray[ columnIndex ] || '';
+					data.exact = c.sortLocaleCompare ? ts.replaceAccents( result ) : result; // issue #405
+					data.iExact = !tsfRegex.type.test( typeof data.exact ) && wo.filter_ignoreCase ?
+						data.exact.toLowerCase() : data.exact;
+					data.isMatch = tsf.matchType( c, columnIndex );
+
+					result = showRow; // if showRow is true, show that row
+
+					// in case select filter option has a different value vs text 'a - z|A through Z'
+					ffxn = wo.filter_columnFilters ?
+						c.$filters.add( wo.filter_$externalFilters )
+							.filter( '[data-column="' + columnIndex + '"]' )
+							.find( 'select option:selected' )
+							.attr( 'data-function-name' ) || '' : '';
+					// replace accents - see #357
+					if ( c.sortLocaleCompare ) {
+						data.filter = ts.replaceAccents( data.filter );
+					}
+
+					// replace column specific default filters - see #1088
+					if ( wo.filter_defaultFilter && tsfRegex.iQuery.test( vars.defaultColFilter[ columnIndex ] ) ) {
+						data.filter = tsf.defaultFilter( data.filter, vars.defaultColFilter[ columnIndex ] );
+					}
+
+					// data.iFilter = case insensitive ( if wo.filter_ignoreCase is true ),
+					// data.filter = case sensitive
+					data.iFilter = wo.filter_ignoreCase ? ( data.filter || '' ).toLowerCase() : data.filter;
+					fxn = vars.functions[ columnIndex ];
+					filterMatched = null;
+					if ( fxn ) {
+						if ( typeof fxn === 'function' ) {
+							// filter callback( exact cell content, parser normalized content,
+							// filter input value, column index, jQuery row object )
+							filterMatched = fxn( data.exact, data.cache, data.filter, columnIndex, data.$row, c, data );
+						} else if ( typeof fxn[ ffxn || data.filter ] === 'function' ) {
+							// selector option function
+							txt = ffxn || data.filter;
+							filterMatched =
+								fxn[ txt ]( data.exact, data.cache, data.filter, columnIndex, data.$row, c, data );
+						}
+					}
+					if ( filterMatched === null ) {
+						// cycle through the different filters
+						// filters return a boolean or null if nothing matches
+						filterMatched = tsf.processTypes( c, data, vars );
+						if ( filterMatched !== null ) {
+							result = filterMatched;
+						// Look for match, and add child row data for matching
+						} else {
+							// check fxn (filter-select in header) after filter types are checked
+							// without this, the filter + jQuery UI selectmenu demo was breaking
+							if ( fxn === true ) {
+								// default selector uses exact match unless 'filter-match' class is found
+								result = data.isMatch ?
+									// data.iExact may be a number
+									( '' + data.iExact ).search( data.iFilter ) >= 0 :
+									data.filter === data.exact;
+							} else {
+								txt = ( data.iExact + data.childRowText ).indexOf( tsf.parseFilter( c, data.iFilter, data ) );
+								result = ( ( !wo.filter_startsWith && txt >= 0 ) || ( wo.filter_startsWith && txt === 0 ) );
+							}
+						}
+					} else {
+						result = filterMatched;
+					}
+					showRow = ( result ) ? showRow : false;
+				}
+			}
+			return showRow;
+		},
+		findRows: function( table, filters, currentFilters ) {
+			if (
+				tsf.equalFilters(table.config, table.config.lastSearch, currentFilters) ||
+				!table.config.widgetOptions.filter_initialized
+			) {
+				return;
+			}
+			var len, norm_rows, rowData, $rows, $row, rowIndex, tbodyIndex, $tbody, columnIndex,
+				isChild, childRow, lastSearch, showRow, showParent, time, val, indx,
+				notFiltered, searchFiltered, query, injected, res, id, txt,
+				storedFilters = $.extend( [], filters ),
+				c = table.config,
+				wo = c.widgetOptions,
+				// data object passed to filters; anyMatch is a flag for the filters
+				data = {
+					anyMatch: false,
+					filters: filters,
+					// regex filter type cache
+					filter_regexCache : []
+				},
+				vars = {
+					// anyMatch really screws up with these types of filters
+					noAnyMatch: [ 'range',  'operators' ],
+					// cache filter variables that use ts.getColumnData in the main loop
+					functions : [],
+					excludeFilter : [],
+					defaultColFilter : [],
+					defaultAnyFilter : ts.getColumnData( table, wo.filter_defaultFilter, c.columns, true ) || ''
+				};
+
+			// parse columns after formatter, in case the class is added at that point
+			data.parsed = [];
+			for ( columnIndex = 0; columnIndex < c.columns; columnIndex++ ) {
+				data.parsed[ columnIndex ] = wo.filter_useParsedData ||
+					// parser has a "parsed" parameter
+					( c.parsers && c.parsers[ columnIndex ] && c.parsers[ columnIndex ].parsed ||
+					// getData may not return 'parsed' if other 'filter-' class names exist
+					// ( e.g. <th class="filter-select filter-parsed"> )
+					ts.getData && ts.getData( c.$headerIndexed[ columnIndex ],
+						ts.getColumnData( table, c.headers, columnIndex ), 'filter' ) === 'parsed' ||
+					c.$headerIndexed[ columnIndex ].hasClass( 'filter-parsed' ) );
+
+				vars.functions[ columnIndex ] =
+					ts.getColumnData( table, wo.filter_functions, columnIndex ) ||
+					c.$headerIndexed[ columnIndex ].hasClass( 'filter-select' );
+				vars.defaultColFilter[ columnIndex ] =
+					ts.getColumnData( table, wo.filter_defaultFilter, columnIndex ) || '';
+				vars.excludeFilter[ columnIndex ] =
+					( ts.getColumnData( table, wo.filter_excludeFilter, columnIndex, true ) || '' ).split( /\s+/ );
+			}
+
+			if ( c.debug ) {
+				console.log( 'Filter: Starting filter widget search', filters );
+				time = new Date();
+			}
+			// filtered rows count
+			c.filteredRows = 0;
+			c.totalRows = 0;
+			currentFilters = ( storedFilters || [] );
+
+			for ( tbodyIndex = 0; tbodyIndex < c.$tbodies.length; tbodyIndex++ ) {
+				$tbody = ts.processTbody( table, c.$tbodies.eq( tbodyIndex ), true );
+				// skip child rows & widget added ( removable ) rows - fixes #448 thanks to @hempel!
+				// $rows = $tbody.children( 'tr' ).not( c.selectorRemove );
+				columnIndex = c.columns;
+				// convert stored rows into a jQuery object
+				norm_rows = c.cache[ tbodyIndex ].normalized;
+				$rows = $( $.map( norm_rows, function( el ) {
+					return el[ columnIndex ].$row.get();
+				}) );
+
+				if ( currentFilters.join('') === '' || wo.filter_serversideFiltering ) {
+					$rows
+						.removeClass( wo.filter_filteredRow )
+						.not( '.' + c.cssChildRow )
+						.css( 'display', '' );
+				} else {
+					// filter out child rows
+					$rows = $rows.not( '.' + c.cssChildRow );
+					len = $rows.length;
+
+					if ( ( wo.filter_$anyMatch && wo.filter_$anyMatch.length ) ||
+						typeof filters[c.columns] !== 'undefined' ) {
+						data.anyMatchFlag = true;
+						data.anyMatchFilter = '' + (
+							filters[ c.columns ] ||
+							wo.filter_$anyMatch && tsf.getLatestSearch( wo.filter_$anyMatch ).val() ||
+							''
+						);
+						if ( wo.filter_columnAnyMatch ) {
+							// specific columns search
+							query = data.anyMatchFilter.split( tsfRegex.andSplit );
+							injected = false;
+							for ( indx = 0; indx < query.length; indx++ ) {
+								res = query[ indx ].split( ':' );
+								if ( res.length > 1 ) {
+									// make the column a one-based index ( non-developers start counting from one :P )
+									if ( isNaN( res[0] ) ) {
+										$.each( c.headerContent, function( i, txt ) {
+											// multiple matches are possible
+											if ( txt.toLowerCase().indexOf( res[0] ) > -1 ) {
+												id = i;
+												filters[ id ] = res[1];
+											}
+										});
+									} else {
+										id = parseInt( res[0], 10 ) - 1;
+									}
+									if ( id >= 0 && id < c.columns ) { // if id is an integer
+										filters[ id ] = res[1];
+										query.splice( indx, 1 );
+										indx--;
+										injected = true;
+									}
+								}
+							}
+							if ( injected ) {
+								data.anyMatchFilter = query.join( ' && ' );
+							}
+						}
+					}
+
+					// optimize searching only through already filtered rows - see #313
+					searchFiltered = wo.filter_searchFiltered;
+					lastSearch = c.lastSearch || c.$table.data( 'lastSearch' ) || [];
+					if ( searchFiltered ) {
+						// cycle through all filters; include last ( columnIndex + 1 = match any column ). Fixes #669
+						for ( indx = 0; indx < columnIndex + 1; indx++ ) {
+							val = filters[indx] || '';
+							// break out of loop if we've already determined not to search filtered rows
+							if ( !searchFiltered ) { indx = columnIndex; }
+							// search already filtered rows if...
+							searchFiltered = searchFiltered && lastSearch.length &&
+								// there are no changes from beginning of filter
+								val.indexOf( lastSearch[indx] || '' ) === 0 &&
+								// if there is NOT a logical 'or', or range ( 'to' or '-' ) in the string
+								!tsfRegex.alreadyFiltered.test( val ) &&
+								// if we are not doing exact matches, using '|' ( logical or ) or not '!'
+								!tsfRegex.exactTest.test( val ) &&
+								// don't search only filtered if the value is negative
+								// ( '> -10' => '> -100' will ignore hidden rows )
+								!( tsfRegex.isNeg1.test( val ) || tsfRegex.isNeg2.test( val ) ) &&
+								// if filtering using a select without a 'filter-match' class ( exact match ) - fixes #593
+								!( val !== '' && c.$filters && c.$filters.filter( '[data-column="' + indx + '"]' ).find( 'select' ).length &&
+									!tsf.matchType( c, indx ) );
+						}
+					}
+					notFiltered = $rows.not( '.' + wo.filter_filteredRow ).length;
+					// can't search when all rows are hidden - this happens when looking for exact matches
+					if ( searchFiltered && notFiltered === 0 ) { searchFiltered = false; }
+					if ( c.debug ) {
+						console.log( 'Filter: Searching through ' +
+							( searchFiltered && notFiltered < len ? notFiltered : 'all' ) + ' rows' );
+					}
+					if ( data.anyMatchFlag ) {
+						if ( c.sortLocaleCompare ) {
+							// replace accents
+							data.anyMatchFilter = ts.replaceAccents( data.anyMatchFilter );
+						}
+						if ( wo.filter_defaultFilter && tsfRegex.iQuery.test( vars.defaultAnyFilter ) ) {
+							data.anyMatchFilter = tsf.defaultFilter( data.anyMatchFilter, vars.defaultAnyFilter );
+							// clear search filtered flag because default filters are not saved to the last search
+							searchFiltered = false;
+						}
+						// make iAnyMatchFilter lowercase unless both filter widget & core ignoreCase options are true
+						// when c.ignoreCase is true, the cache contains all lower case data
+						data.iAnyMatchFilter = !( wo.filter_ignoreCase && c.ignoreCase ) ?
+							data.anyMatchFilter :
+							data.anyMatchFilter.toLowerCase();
+					}
+
+					// loop through the rows
+					for ( rowIndex = 0; rowIndex < len; rowIndex++ ) {
+
+						txt = $rows[ rowIndex ].className;
+						// the first row can never be a child row
+						isChild = rowIndex && tsfRegex.child.test( txt );
+						// skip child rows & already filtered rows
+						if ( isChild || ( searchFiltered && tsfRegex.filtered.test( txt ) ) ) {
+							continue;
+						}
+
+						data.$row = $rows.eq( rowIndex );
+						data.rowIndex = rowIndex;
+						data.cacheArray = norm_rows[ rowIndex ];
+						rowData = data.cacheArray[ c.columns ];
+						data.rawArray = rowData.raw;
+						data.childRowText = '';
+
+						if ( !wo.filter_childByColumn ) {
+							txt = '';
+							// child row cached text
+							childRow = rowData.child;
+							// so, if 'table.config.widgetOptions.filter_childRows' is true and there is
+							// a match anywhere in the child row, then it will make the row visible
+							// checked here so the option can be changed dynamically
+							for ( indx = 0; indx < childRow.length; indx++ ) {
+								txt += ' ' + childRow[indx].join( ' ' ) || '';
+							}
+							data.childRowText = wo.filter_childRows ?
+								( wo.filter_ignoreCase ? txt.toLowerCase() : txt ) :
+								'';
+						}
+
+						showRow = false;
+						showParent = tsf.processRow( c, data, vars );
+						$row = rowData.$row;
+
+						// don't pass reference to val
+						val = showParent ? true : false;
+						childRow = rowData.$row.filter( ':gt(0)' );
+						if ( wo.filter_childRows && childRow.length ) {
+							if ( wo.filter_childByColumn ) {
+								if ( !wo.filter_childWithSibs ) {
+									// hide all child rows
+									childRow.addClass( wo.filter_filteredRow );
+									// if only showing resulting child row, only include parent
+									$row = $row.eq( 0 );
+								}
+								// cycle through each child row
+								for ( indx = 0; indx < childRow.length; indx++ ) {
+									data.$row = childRow.eq( indx );
+									data.cacheArray = rowData.child[ indx ];
+									data.rawArray = data.cacheArray;
+									val = tsf.processRow( c, data, vars );
+									// use OR comparison on child rows
+									showRow = showRow || val;
+									if ( !wo.filter_childWithSibs && val ) {
+										childRow.eq( indx ).removeClass( wo.filter_filteredRow );
+									}
+								}
+							}
+							// keep parent row match even if no child matches... see #1020
+							showRow = showRow || showParent;
+						} else {
+							showRow = val;
+						}
+						$row
+							.toggleClass( wo.filter_filteredRow, !showRow )[0]
+							.display = showRow ? '' : 'none';
+					}
+				}
+				c.filteredRows += $rows.not( '.' + wo.filter_filteredRow ).length;
+				c.totalRows += $rows.length;
+				ts.processTbody( table, $tbody, false );
+			}
+			// lastCombinedFilter is no longer used internally
+			c.lastCombinedFilter = storedFilters.join(''); // save last search
+			// don't save 'filters' directly since it may have altered ( AnyMatch column searches )
+			c.lastSearch = storedFilters;
+			c.$table.data( 'lastSearch', storedFilters );
+			if ( wo.filter_saveFilters && ts.storage ) {
+				ts.storage( table, 'tablesorter-filters', tsf.processFilters( storedFilters, true ) );
+			}
+			if ( c.debug ) {
+				console.log( 'Completed filter widget search' + ts.benchmark(time) );
+			}
+			if ( wo.filter_initialized ) {
+				c.$table.triggerHandler( 'filterBeforeEnd', c );
+				c.$table.triggerHandler( 'filterEnd', c );
+			}
+			setTimeout( function() {
+				ts.applyWidget( c.table ); // make sure zebra widget is applied
+			}, 0 );
+		},
+		getOptionSource: function( table, column, onlyAvail ) {
+			table = $( table )[0];
+			var c = table.config,
+				wo = c.widgetOptions,
+				arry = false,
+				source = wo.filter_selectSource,
+				last = c.$table.data( 'lastSearch' ) || [],
+				fxn = typeof source === 'function' ? true : ts.getColumnData( table, source, column );
+
+			if ( onlyAvail && last[column] !== '' ) {
+				onlyAvail = false;
+			}
+
+			// filter select source option
+			if ( fxn === true ) {
+				// OVERALL source
+				arry = source( table, column, onlyAvail );
+			} else if ( fxn instanceof $ || ( $.type( fxn ) === 'string' && fxn.indexOf( '</option>' ) >= 0 ) ) {
+				// selectSource is a jQuery object or string of options
+				return fxn;
+			} else if ( $.isArray( fxn ) ) {
+				arry = fxn;
+			} else if ( $.type( source ) === 'object' && fxn ) {
+				// custom select source function for a SPECIFIC COLUMN
+				arry = fxn( table, column, onlyAvail );
+				// abort - updating the selects from an external method
+				if (arry === null) {
+					return null;
+				}
+			}
+			if ( arry === false ) {
+				// fall back to original method
+				arry = tsf.getOptions( table, column, onlyAvail );
+			}
+
+			return tsf.processOptions( table, column, arry );
+
+		},
+		processOptions: function( table, column, arry ) {
+			if ( !$.isArray( arry ) ) {
+				return false;
+			}
+			table = $( table )[0];
+			var cts, txt, indx, len, parsedTxt, str,
+				c = table.config,
+				validColumn = typeof column !== 'undefined' && column !== null && column >= 0 && column < c.columns,
+				direction = validColumn ? c.$headerIndexed[ column ].hasClass( 'filter-select-sort-desc' ) : false,
+				parsed = [];
+			// get unique elements and sort the list
+			// if $.tablesorter.sortText exists ( not in the original tablesorter ),
+			// then natural sort the list otherwise use a basic sort
+			arry = $.grep( arry, function( value, indx ) {
+				if ( value.text ) {
+					return true;
+				}
+				return $.inArray( value, arry ) === indx;
+			});
+			if ( validColumn && c.$headerIndexed[ column ].hasClass( 'filter-select-nosort' ) ) {
+				// unsorted select options
+				return arry;
+			} else {
+				len = arry.length;
+				// parse select option values
+				for ( indx = 0; indx < len; indx++ ) {
+					txt = arry[ indx ];
+					// check for object
+					str = txt.text ? txt.text : txt;
+					// sortNatural breaks if you don't pass it strings
+					parsedTxt = ( validColumn && c.parsers && c.parsers.length &&
+						c.parsers[ column ].format( str, table, [], column ) || str ).toString();
+					parsedTxt = c.widgetOptions.filter_ignoreCase ? parsedTxt.toLowerCase() : parsedTxt;
+					// parse array data using set column parser; this DOES NOT pass the original
+					// table cell to the parser format function
+					if ( txt.text ) {
+						txt.parsed = parsedTxt;
+						parsed[ parsed.length ] = txt;
+					} else {
+						parsed[ parsed.length ] = {
+							text : txt,
+							// check parser length - fixes #934
+							parsed : parsedTxt
+						};
+					}
+				}
+				// sort parsed select options
+				cts = c.textSorter || '';
+				parsed.sort( function( a, b ) {
+					var x = direction ? b.parsed : a.parsed,
+						y = direction ? a.parsed : b.parsed;
+					if ( validColumn && typeof cts === 'function' ) {
+						// custom OVERALL text sorter
+						return cts( x, y, true, column, table );
+					} else if ( validColumn && typeof cts === 'object' && cts.hasOwnProperty( column ) ) {
+						// custom text sorter for a SPECIFIC COLUMN
+						return cts[column]( x, y, true, column, table );
+					} else if ( ts.sortNatural ) {
+						// fall back to natural sort
+						return ts.sortNatural( x, y );
+					}
+					// using an older version! do a basic sort
+					return true;
+				});
+				// rebuild arry from sorted parsed data
+				arry = [];
+				len = parsed.length;
+				for ( indx = 0; indx < len; indx++ ) {
+					arry[ arry.length ] = parsed[indx];
+				}
+				return arry;
+			}
+		},
+		getOptions: function( table, column, onlyAvail ) {
+			table = $( table )[0];
+			var rowIndex, tbodyIndex, len, row, cache, indx, child, childLen,
+				c = table.config,
+				wo = c.widgetOptions,
+				arry = [];
+			for ( tbodyIndex = 0; tbodyIndex < c.$tbodies.length; tbodyIndex++ ) {
+				cache = c.cache[tbodyIndex];
+				len = c.cache[tbodyIndex].normalized.length;
+				// loop through the rows
+				for ( rowIndex = 0; rowIndex < len; rowIndex++ ) {
+					// get cached row from cache.row ( old ) or row data object
+					// ( new; last item in normalized array )
+					row = cache.row ?
+						cache.row[ rowIndex ] :
+						cache.normalized[ rowIndex ][ c.columns ].$row[0];
+					// check if has class filtered
+					if ( onlyAvail && row.className.match( wo.filter_filteredRow ) ) {
+						continue;
+					}
+					// get non-normalized cell content
+					if ( wo.filter_useParsedData ||
+						c.parsers[column].parsed ||
+						c.$headerIndexed[column].hasClass( 'filter-parsed' ) ) {
+						arry[ arry.length ] = '' + cache.normalized[ rowIndex ][ column ];
+						// child row parsed data
+						if ( wo.filter_childRows && wo.filter_childByColumn ) {
+							childLen = cache.normalized[ rowIndex ][ c.columns ].$row.length - 1;
+							for ( indx = 0; indx < childLen; indx++ ) {
+								arry[ arry.length ] = '' + cache.normalized[ rowIndex ][ c.columns ].child[ indx ][ column ];
+							}
+						}
+					} else {
+						// get raw cached data instead of content directly from the cells
+						arry[ arry.length ] = cache.normalized[ rowIndex ][ c.columns ].raw[ column ];
+						// child row unparsed data
+						if ( wo.filter_childRows && wo.filter_childByColumn ) {
+							childLen = cache.normalized[ rowIndex ][ c.columns ].$row.length;
+							for ( indx = 1; indx < childLen; indx++ ) {
+								child =  cache.normalized[ rowIndex ][ c.columns ].$row.eq( indx ).children().eq( column );
+								arry[ arry.length ] = '' + ts.getElementText( c, child, column );
+							}
+						}
+					}
+				}
+			}
+			return arry;
+		},
+		buildSelect: function( table, column, arry, updating, onlyAvail ) {
+			table = $( table )[0];
+			column = parseInt( column, 10 );
+			if ( !table.config.cache || $.isEmptyObject( table.config.cache ) ) {
+				return;
+			}
+
+			var indx, val, txt, t, $filters, $filter, option,
+				c = table.config,
+				wo = c.widgetOptions,
+				node = c.$headerIndexed[ column ],
+				// t.data( 'placeholder' ) won't work in jQuery older than 1.4.3
+				options = '<option value="">' +
+					( node.data( 'placeholder' ) ||
+						node.attr( 'data-placeholder' ) ||
+						wo.filter_placeholder.select || ''
+					) + '</option>',
+				// Get curent filter value
+				currentValue = c.$table
+					.find( 'thead' )
+					.find( 'select.' + tscss.filter + '[data-column="' + column + '"]' )
+					.val();
+
+			// nothing included in arry ( external source ), so get the options from
+			// filter_selectSource or column data
+			if ( typeof arry === 'undefined' || arry === '' ) {
+				arry = tsf.getOptionSource( table, column, onlyAvail );
+				// abort, selects are updated by an external method
+				if (arry === null) {
+					return;
+				}
+			}
+
+			if ( $.isArray( arry ) ) {
+				// build option list
+				for ( indx = 0; indx < arry.length; indx++ ) {
+					option = arry[ indx ];
+					if ( option.text ) {
+						// OBJECT!! add data-function-name in case the value is set in filter_functions
+						option['data-function-name'] = typeof option.value === 'undefined' ? option.text : option.value;
+
+						// support jQuery < v1.8, otherwise the below code could be shortened to
+						// options += $( '<option>', option )[ 0 ].outerHTML;
+						options += '<option';
+						for ( val in option ) {
+							if ( option.hasOwnProperty( val ) && val !== 'text' ) {
+								options += ' ' + val + '="' + option[ val ] + '"';
+							}
+						}
+						if ( !option.value ) {
+							options += ' value="' + option.text + '"';
+						}
+						options += '>' + option.text + '</option>';
+						// above code is needed in jQuery < v1.8
+
+						// make sure we don't turn an object into a string (objects without a "text" property)
+					} else if ( '' + option !== '[object Object]' ) {
+						txt = option = ( '' + option ).replace( tsfRegex.quote, '&quot;' );
+						val = txt;
+						// allow including a symbol in the selectSource array
+						// 'a-z|A through Z' so that 'a-z' becomes the option value
+						// and 'A through Z' becomes the option text
+						if ( txt.indexOf( wo.filter_selectSourceSeparator ) >= 0 ) {
+							t = txt.split( wo.filter_selectSourceSeparator );
+							val = t[0];
+							txt = t[1];
+						}
+						// replace quotes - fixes #242 & ignore empty strings
+						// see http://stackoverflow.com/q/14990971/145346
+						options += option !== '' ?
+							'<option ' +
+								( val === txt ? '' : 'data-function-name="' + option + '" ' ) +
+								'value="' + val + '">' + txt +
+							'</option>' : '';
+					}
+				}
+				// clear arry so it doesn't get appended twice
+				arry = [];
+			}
+
+			// update all selects in the same column ( clone thead in sticky headers &
+			// any external selects ) - fixes 473
+			$filters = ( c.$filters ? c.$filters : c.$table.children( 'thead' ) )
+				.find( '.' + tscss.filter );
+			if ( wo.filter_$externalFilters ) {
+				$filters = $filters && $filters.length ?
+					$filters.add( wo.filter_$externalFilters ) :
+					wo.filter_$externalFilters;
+			}
+			$filter = $filters.filter( 'select[data-column="' + column + '"]' );
+
+			// make sure there is a select there!
+			if ( $filter.length ) {
+				$filter[ updating ? 'html' : 'append' ]( options );
+				if ( !$.isArray( arry ) ) {
+					// append options if arry is provided externally as a string or jQuery object
+					// options ( default value ) was already added
+					$filter.append( arry ).val( currentValue );
+				}
+				$filter.val( currentValue );
+			}
+		},
+		buildDefault: function( table, updating ) {
+			var columnIndex, $header, noSelect,
+				c = table.config,
+				wo = c.widgetOptions,
+				columns = c.columns;
+			// build default select dropdown
+			for ( columnIndex = 0; columnIndex < columns; columnIndex++ ) {
+				$header = c.$headerIndexed[columnIndex];
+				noSelect = !( $header.hasClass( 'filter-false' ) || $header.hasClass( 'parser-false' ) );
+				// look for the filter-select class; build/update it if found
+				if ( ( $header.hasClass( 'filter-select' ) ||
+					ts.getColumnData( table, wo.filter_functions, columnIndex ) === true ) && noSelect ) {
+					tsf.buildSelect( table, columnIndex, '', updating, $header.hasClass( wo.filter_onlyAvail ) );
+				}
+			}
+		}
+	};
+
+	// filter regex variable
+	tsfRegex = tsf.regex;
+
+	ts.getFilters = function( table, getRaw, setFilters, skipFirst ) {
+		var i, $filters, $column, cols,
+			filters = [],
+			c = table ? $( table )[0].config : '',
+			wo = c ? c.widgetOptions : '';
+		if ( ( getRaw !== true && wo && !wo.filter_columnFilters ) ||
+			// setFilters called, but last search is exactly the same as the current
+			// fixes issue #733 & #903 where calling update causes the input values to reset
+			( $.isArray(setFilters) && tsf.equalFilters(c, setFilters, c.lastSearch) )
+		) {
+			return $( table ).data( 'lastSearch' ) || [];
+		}
+		if ( c ) {
+			if ( c.$filters ) {
+				$filters = c.$filters.find( '.' + tscss.filter );
+			}
+			if ( wo.filter_$externalFilters ) {
+				$filters = $filters && $filters.length ?
+					$filters.add( wo.filter_$externalFilters ) :
+					wo.filter_$externalFilters;
+			}
+			if ( $filters && $filters.length ) {
+				filters = setFilters || [];
+				for ( i = 0; i < c.columns + 1; i++ ) {
+					cols = ( i === c.columns ?
+						// 'all' columns can now include a range or set of columms ( data-column='0-2,4,6-7' )
+						wo.filter_anyColumnSelector + ',' + wo.filter_multipleColumnSelector :
+						'[data-column="' + i + '"]' );
+					$column = $filters.filter( cols );
+					if ( $column.length ) {
+						// move the latest search to the first slot in the array
+						$column = tsf.getLatestSearch( $column );
+						if ( $.isArray( setFilters ) ) {
+							// skip first ( latest input ) to maintain cursor position while typing
+							if ( skipFirst && $column.length > 1 ) {
+								$column = $column.slice( 1 );
+							}
+							if ( i === c.columns ) {
+								// prevent data-column='all' from filling data-column='0,1' ( etc )
+								cols = $column.filter( wo.filter_anyColumnSelector );
+								$column = cols.length ? cols : $column;
+							}
+							$column
+								.val( setFilters[ i ] )
+								// must include a namespace here; but not c.namespace + 'filter'?
+								.trigger( 'change' + c.namespace );
+						} else {
+							filters[i] = $column.val() || '';
+							// don't change the first... it will move the cursor
+							if ( i === c.columns ) {
+								// don't update range columns from 'all' setting
+								$column
+									.slice( 1 )
+									.filter( '[data-column*="' + $column.attr( 'data-column' ) + '"]' )
+									.val( filters[ i ] );
+							} else {
+								$column
+									.slice( 1 )
+									.val( filters[ i ] );
+							}
+						}
+						// save any match input dynamically
+						if ( i === c.columns && $column.length ) {
+							wo.filter_$anyMatch = $column;
+						}
+					}
+				}
+			}
+		}
+		return filters;
+	};
+
+	ts.setFilters = function( table, filter, apply, skipFirst ) {
+		var c = table ? $( table )[0].config : '',
+			valid = ts.getFilters( table, true, filter, skipFirst );
+		// default apply to "true"
+		if ( typeof apply === 'undefined' ) {
+			apply = true;
+		}
+		if ( c && apply ) {
+			// ensure new set filters are applied, even if the search is the same
+			c.lastCombinedFilter = null;
+			c.lastSearch = [];
+			tsf.searching( c.table, filter, skipFirst );
+			c.$table.triggerHandler( 'filterFomatterUpdate' );
+		}
+		return valid.length !== 0;
+	};
+
+})( jQuery );
+
+/*! Widget: stickyHeaders - updated 9/27/2017 (v2.29.0) *//*
+ * Requires tablesorter v2.8+ and jQuery 1.4.3+
+ * by Rob Garrison
+ */
+;(function ($, window) {
+	'use strict';
+	var ts = $.tablesorter || {};
+
+	$.extend(ts.css, {
+		sticky    : 'tablesorter-stickyHeader', // stickyHeader
+		stickyVis : 'tablesorter-sticky-visible',
+		stickyHide: 'tablesorter-sticky-hidden',
+		stickyWrap: 'tablesorter-sticky-wrapper'
+	});
+
+	// Add a resize event to table headers
+	ts.addHeaderResizeEvent = function(table, disable, settings) {
+		table = $(table)[0]; // make sure we're using a dom element
+		if ( !table.config ) { return; }
+		var defaults = {
+				timer : 250
+			},
+			options = $.extend({}, defaults, settings),
+			c = table.config,
+			wo = c.widgetOptions,
+			checkSizes = function( triggerEvent ) {
+				var index, headers, $header, sizes, width, height,
+					len = c.$headers.length;
+				wo.resize_flag = true;
+				headers = [];
+				for ( index = 0; index < len; index++ ) {
+					$header = c.$headers.eq( index );
+					sizes = $header.data( 'savedSizes' ) || [ 0, 0 ]; // fixes #394
+					width = $header[0].offsetWidth;
+					height = $header[0].offsetHeight;
+					if ( width !== sizes[0] || height !== sizes[1] ) {
+						$header.data( 'savedSizes', [ width, height ] );
+						headers.push( $header[0] );
+					}
+				}
+				if ( headers.length && triggerEvent !== false ) {
+					c.$table.triggerHandler( 'resize', [ headers ] );
+				}
+				wo.resize_flag = false;
+			};
+		clearInterval(wo.resize_timer);
+		if (disable) {
+			wo.resize_flag = false;
+			return false;
+		}
+		checkSizes( false );
+		wo.resize_timer = setInterval(function() {
+			if (wo.resize_flag) { return; }
+			checkSizes();
+		}, options.timer);
+	};
+
+	function getStickyOffset(c, wo) {
+		var $el = isNaN(wo.stickyHeaders_offset) ? $(wo.stickyHeaders_offset) : [];
+		return $el.length ?
+			$el.height() || 0 :
+			parseInt(wo.stickyHeaders_offset, 10) || 0;
+	}
+
+	// Sticky headers based on this awesome article:
+	// http://css-tricks.com/13465-persistent-headers/
+	// and https://github.com/jmosbech/StickyTableHeaders by Jonas Mosbech
+	// **************************
+	ts.addWidget({
+		id: 'stickyHeaders',
+		priority: 54, // sticky widget must be initialized after the filter & before pager widget!
+		options: {
+			stickyHeaders : '',       // extra class name added to the sticky header row
+			stickyHeaders_appendTo : null, // jQuery selector or object to phycially attach the sticky headers
+			stickyHeaders_attachTo : null, // jQuery selector or object to attach scroll listener to (overridden by xScroll & yScroll settings)
+			stickyHeaders_xScroll : null, // jQuery selector or object to monitor horizontal scroll position (defaults: xScroll > attachTo > window)
+			stickyHeaders_yScroll : null, // jQuery selector or object to monitor vertical scroll position (defaults: yScroll > attachTo > window)
+			stickyHeaders_offset : 0, // number or jquery selector targeting the position:fixed element
+			stickyHeaders_filteredToTop: true, // scroll table top into view after filtering
+			stickyHeaders_cloneId : '-sticky', // added to table ID, if it exists
+			stickyHeaders_addResizeEvent : true, // trigger 'resize' event on headers
+			stickyHeaders_includeCaption : true, // if false and a caption exist, it won't be included in the sticky header
+			stickyHeaders_zIndex : 2 // The zIndex of the stickyHeaders, allows the user to adjust this to their needs
+		},
+		format: function(table, c, wo) {
+			// filter widget doesn't initialize on an empty table. Fixes #449
+			if ( c.$table.hasClass('hasStickyHeaders') || ($.inArray('filter', c.widgets) >= 0 && !c.$table.hasClass('hasFilters')) ) {
+				return;
+			}
+			var index, len, $t,
+				$table = c.$table,
+				// add position: relative to attach element, hopefully it won't cause trouble.
+				$attach = $(wo.stickyHeaders_attachTo),
+				namespace = c.namespace + 'stickyheaders ',
+				// element to watch for the scroll event
+				$yScroll = $(wo.stickyHeaders_yScroll || wo.stickyHeaders_attachTo || window),
+				$xScroll = $(wo.stickyHeaders_xScroll || wo.stickyHeaders_attachTo || window),
+				$thead = $table.children('thead:first'),
+				$header = $thead.children('tr').not('.sticky-false').children(),
+				$tfoot = $table.children('tfoot'),
+				stickyOffset = getStickyOffset(c, wo),
+				// is this table nested? If so, find parent sticky header wrapper (div, not table)
+				$nestedSticky = $table.parent().closest('.' + ts.css.table).hasClass('hasStickyHeaders') ?
+					$table.parent().closest('table.tablesorter')[0].config.widgetOptions.$sticky.parent() : [],
+				nestedStickyTop = $nestedSticky.length ? $nestedSticky.height() : 0,
+				// clone table, then wrap to make sticky header
+				$stickyTable = wo.$sticky = $table.clone()
+					.addClass('containsStickyHeaders ' + ts.css.sticky + ' ' + wo.stickyHeaders + ' ' + c.namespace.slice(1) + '_extra_table' )
+					.wrap('<div class="' + ts.css.stickyWrap + '">'),
+				$stickyWrap = $stickyTable.parent()
+					.addClass(ts.css.stickyHide)
+					.css({
+						position   : $attach.length ? 'absolute' : 'fixed',
+						padding    : parseInt( $stickyTable.parent().parent().css('padding-left'), 10 ),
+						top        : stickyOffset + nestedStickyTop,
+						left       : 0,
+						visibility : 'hidden',
+						zIndex     : wo.stickyHeaders_zIndex || 2
+					}),
+				$stickyThead = $stickyTable.children('thead:first'),
+				$stickyCells,
+				laststate = '',
+				setWidth = function($orig, $clone){
+					var index, width, border, $cell, $this,
+						$cells = $orig.filter(':visible'),
+						len = $cells.length;
+					for ( index = 0; index < len; index++ ) {
+						$cell = $clone.filter(':visible').eq(index);
+						$this = $cells.eq(index);
+						// code from https://github.com/jmosbech/StickyTableHeaders
+						if ($this.css('box-sizing') === 'border-box') {
+							width = $this.outerWidth();
+						} else {
+							if ($cell.css('border-collapse') === 'collapse') {
+								if (window.getComputedStyle) {
+									width = parseFloat( window.getComputedStyle($this[0], null).width );
+								} else {
+									// ie8 only
+									border = parseFloat( $this.css('border-width') );
+									width = $this.outerWidth() - parseFloat( $this.css('padding-left') ) - parseFloat( $this.css('padding-right') ) - border;
+								}
+							} else {
+								width = $this.width();
+							}
+						}
+						$cell.css({
+							'width': width,
+							'min-width': width,
+							'max-width': width
+						});
+					}
+				},
+				getLeftPosition = function() {
+					return $attach.length ?
+						parseInt($attach.css('padding-left'), 10) || 0 :
+						$table.offset().left - parseInt($table.css('margin-left'), 10) - $(window).scrollLeft();
+				},
+				resizeHeader = function() {
+					$stickyWrap.css({
+						left : getLeftPosition(),
+						width: $table.outerWidth()
+					});
+					setWidth( $table, $stickyTable );
+					setWidth( $header, $stickyCells );
+				},
+				scrollSticky = function( resizing ) {
+					if (!$table.is(':visible')) { return; } // fixes #278
+					// Detect nested tables - fixes #724
+					nestedStickyTop = $nestedSticky.length ? $nestedSticky.offset().top - $yScroll.scrollTop() + $nestedSticky.height() : 0;
+					var tmp,
+						offset = $table.offset(),
+						stickyOffset = getStickyOffset(c, wo),
+						yWindow = $.isWindow( $yScroll[0] ), // $.isWindow needs jQuery 1.4.3
+						attachTop = $attach.length ?
+							( yWindow ? $yScroll.scrollTop() : $yScroll.offset().top ) :
+							$yScroll.scrollTop(),
+						captionHeight = wo.stickyHeaders_includeCaption ? 0 : $table.children( 'caption' ).height() || 0,
+						scrollTop = attachTop + stickyOffset + nestedStickyTop - captionHeight,
+						tableHeight = $table.height() - ($stickyWrap.height() + ($tfoot.height() || 0)) - captionHeight,
+						isVisible = ( scrollTop > offset.top ) && ( scrollTop < offset.top + tableHeight ) ? 'visible' : 'hidden',
+						state = isVisible === 'visible' ? ts.css.stickyVis : ts.css.stickyHide,
+						needsUpdating = !$stickyWrap.hasClass( state ),
+						cssSettings = { visibility : isVisible };
+					if ($attach.length) {
+						// attached sticky headers always need updating
+						needsUpdating = true;
+						cssSettings.top = yWindow ? scrollTop - $attach.offset().top : $attach.scrollTop();
+					}
+					// adjust when scrolling horizontally - fixes issue #143
+					tmp = getLeftPosition();
+					if (tmp !== parseInt($stickyWrap.css('left'), 10)) {
+						needsUpdating = true;
+						cssSettings.left = tmp;
+					}
+					cssSettings.top = ( cssSettings.top || 0 ) + stickyOffset + nestedStickyTop;
+					if (needsUpdating) {
+						$stickyWrap
+							.removeClass( ts.css.stickyVis + ' ' + ts.css.stickyHide )
+							.addClass( state )
+							.css(cssSettings);
+					}
+					if (isVisible !== laststate || resizing) {
+						// make sure the column widths match
+						resizeHeader();
+						laststate = isVisible;
+					}
+				};
+			// only add a position relative if a position isn't already defined
+			if ($attach.length && !$attach.css('position')) {
+				$attach.css('position', 'relative');
+			}
+			// fix clone ID, if it exists - fixes #271
+			if ($stickyTable.attr('id')) { $stickyTable[0].id += wo.stickyHeaders_cloneId; }
+			// clear out cloned table, except for sticky header
+			// include caption & filter row (fixes #126 & #249) - don't remove cells to get correct cell indexing
+			$stickyTable.find('thead:gt(0), tr.sticky-false').hide();
+			$stickyTable.find('tbody, tfoot').remove();
+			$stickyTable.find('caption').toggle(wo.stickyHeaders_includeCaption);
+			// issue #172 - find td/th in sticky header
+			$stickyCells = $stickyThead.children().children();
+			$stickyTable.css({ height:0, width:0, margin: 0 });
+			// remove resizable block
+			$stickyCells.find('.' + ts.css.resizer).remove();
+			// update sticky header class names to match real header after sorting
+			$table
+				.addClass('hasStickyHeaders')
+				.bind('pagerComplete' + namespace, function() {
+					resizeHeader();
+				});
+
+			ts.bindEvents(table, $stickyThead.children().children('.' + ts.css.header));
+
+			if (wo.stickyHeaders_appendTo) {
+				$(wo.stickyHeaders_appendTo).append( $stickyWrap );
+			} else {
+				// add stickyheaders AFTER the table. If the table is selected by ID, the original one (first) will be returned.
+				$table.after( $stickyWrap );
+			}
+
+			// onRenderHeader is defined, we need to do something about it (fixes #641)
+			if (c.onRenderHeader) {
+				$t = $stickyThead.children('tr').children();
+				len = $t.length;
+				for ( index = 0; index < len; index++ ) {
+					// send second parameter
+					c.onRenderHeader.apply( $t.eq( index ), [ index, c, $stickyTable ] );
+				}
+			}
+
+			// make it sticky!
+			$xScroll.add($yScroll)
+				.unbind( ('scroll resize '.split(' ').join( namespace )).replace(/\s+/g, ' ') )
+				.bind('scroll resize '.split(' ').join( namespace ), function( event ) {
+					scrollSticky( event.type === 'resize' );
+				});
+			c.$table
+				.unbind('stickyHeadersUpdate' + namespace)
+				.bind('stickyHeadersUpdate' + namespace, function(){
+					scrollSticky( true );
+				});
+
+			if (wo.stickyHeaders_addResizeEvent) {
+				ts.addHeaderResizeEvent(table);
+			}
+
+			// look for filter widget
+			if ($table.hasClass('hasFilters') && wo.filter_columnFilters) {
+				// scroll table into view after filtering, if sticky header is active - #482
+				$table.bind('filterEnd' + namespace, function() {
+					// $(':focus') needs jQuery 1.6+
+					var $td = $(document.activeElement).closest('td'),
+						column = $td.parent().children().index($td);
+					// only scroll if sticky header is active
+					if ($stickyWrap.hasClass(ts.css.stickyVis) && wo.stickyHeaders_filteredToTop) {
+						// scroll to original table (not sticky clone)
+						window.scrollTo(0, $table.position().top);
+						// give same input/select focus; check if c.$filters exists; fixes #594
+						if (column >= 0 && c.$filters) {
+							c.$filters.eq(column).find('a, select, input').filter(':visible').focus();
+						}
+					}
+				});
+				ts.filter.bindSearch( $table, $stickyCells.find('.' + ts.css.filter) );
+				// support hideFilters
+				if (wo.filter_hideFilters) {
+					ts.filter.hideFilters(c, $stickyTable);
+				}
+			}
+
+			// resize table (Firefox)
+			if (wo.stickyHeaders_addResizeEvent) {
+				$table.bind('resize' + c.namespace + 'stickyheaders', function() {
+					resizeHeader();
+				});
+			}
+
+			// make sure sticky is visible if page is partially scrolled
+			scrollSticky( true );
+			$table.triggerHandler('stickyHeadersInit');
+
+		},
+		remove: function(table, c, wo) {
+			var namespace = c.namespace + 'stickyheaders ';
+			c.$table
+				.removeClass('hasStickyHeaders')
+				.unbind( ('pagerComplete resize filterEnd stickyHeadersUpdate '.split(' ').join(namespace)).replace(/\s+/g, ' ') )
+				.next('.' + ts.css.stickyWrap).remove();
+			if (wo.$sticky && wo.$sticky.length) { wo.$sticky.remove(); } // remove cloned table
+			$(window)
+				.add(wo.stickyHeaders_xScroll)
+				.add(wo.stickyHeaders_yScroll)
+				.add(wo.stickyHeaders_attachTo)
+				.unbind( ('scroll resize '.split(' ').join(namespace)).replace(/\s+/g, ' ') );
+			ts.addHeaderResizeEvent(table, true);
+		}
+	});
+
+})(jQuery, window);
+
+/*! Widget: resizable - updated 9/27/2017 (v2.29.0) */
+/*jshint browser:true, jquery:true, unused:false */
+;(function ($, window) {
+	'use strict';
+	var ts = $.tablesorter || {};
+
+	$.extend(ts.css, {
+		resizableContainer : 'tablesorter-resizable-container',
+		resizableHandle    : 'tablesorter-resizable-handle',
+		resizableNoSelect  : 'tablesorter-disableSelection',
+		resizableStorage   : 'tablesorter-resizable'
+	});
+
+	// Add extra scroller css
+	$(function(){
+		var s = '<style>' +
+			'body.' + ts.css.resizableNoSelect + ' { -ms-user-select: none; -moz-user-select: -moz-none;' +
+				'-khtml-user-select: none; -webkit-user-select: none; user-select: none; }' +
+			'.' + ts.css.resizableContainer + ' { position: relative; height: 1px; }' +
+			// make handle z-index > than stickyHeader z-index, so the handle stays above sticky header
+			'.' + ts.css.resizableHandle + ' { position: absolute; display: inline-block; width: 8px;' +
+				'top: 1px; cursor: ew-resize; z-index: 3; user-select: none; -moz-user-select: none; }' +
+			'</style>';
+		$('head').append(s);
+	});
+
+	ts.resizable = {
+		init : function( c, wo ) {
+			if ( c.$table.hasClass( 'hasResizable' ) ) { return; }
+			c.$table.addClass( 'hasResizable' );
+
+			var noResize, $header, column, storedSizes, tmp,
+				$table = c.$table,
+				$parent = $table.parent(),
+				marginTop = parseInt( $table.css( 'margin-top' ), 10 ),
+
+			// internal variables
+			vars = wo.resizable_vars = {
+				useStorage : ts.storage && wo.resizable !== false,
+				$wrap : $parent,
+				mouseXPosition : 0,
+				$target : null,
+				$next : null,
+				overflow : $parent.css('overflow') === 'auto' ||
+					$parent.css('overflow') === 'scroll' ||
+					$parent.css('overflow-x') === 'auto' ||
+					$parent.css('overflow-x') === 'scroll',
+				storedSizes : []
+			};
+
+			// set default widths
+			ts.resizableReset( c.table, true );
+
+			// now get measurements!
+			vars.tableWidth = $table.width();
+			// attempt to autodetect
+			vars.fullWidth = Math.abs( $parent.width() - vars.tableWidth ) < 20;
+
+			/*
+			// Hacky method to determine if table width is set to 'auto'
+			// http://stackoverflow.com/a/20892048/145346
+			if ( !vars.fullWidth ) {
+				tmp = $table.width();
+				$header = $table.wrap('<span>').parent(); // temp variable
+				storedSizes = parseInt( $table.css( 'margin-left' ), 10 ) || 0;
+				$table.css( 'margin-left', storedSizes + 50 );
+				vars.tableWidth = $header.width() > tmp ? 'auto' : tmp;
+				$table.css( 'margin-left', storedSizes ? storedSizes : '' );
+				$header = null;
+				$table.unwrap('<span>');
+			}
+			*/
+
+			if ( vars.useStorage && vars.overflow ) {
+				// save table width
+				ts.storage( c.table, 'tablesorter-table-original-css-width', vars.tableWidth );
+				tmp = ts.storage( c.table, 'tablesorter-table-resized-width' ) || 'auto';
+				ts.resizable.setWidth( $table, tmp, true );
+			}
+			wo.resizable_vars.storedSizes = storedSizes = ( vars.useStorage ?
+				ts.storage( c.table, ts.css.resizableStorage ) :
+				[] ) || [];
+			ts.resizable.setWidths( c, wo, storedSizes );
+			ts.resizable.updateStoredSizes( c, wo );
+
+			wo.$resizable_container = $( '<div class="' + ts.css.resizableContainer + '">' )
+				.css({ top : marginTop })
+				.insertBefore( $table );
+			// add container
+			for ( column = 0; column < c.columns; column++ ) {
+				$header = c.$headerIndexed[ column ];
+				tmp = ts.getColumnData( c.table, c.headers, column );
+				noResize = ts.getData( $header, tmp, 'resizable' ) === 'false';
+				if ( !noResize ) {
+					$( '<div class="' + ts.css.resizableHandle + '">' )
+						.appendTo( wo.$resizable_container )
+						.attr({
+							'data-column' : column,
+							'unselectable' : 'on'
+						})
+						.data( 'header', $header )
+						.bind( 'selectstart', false );
+				}
+			}
+			ts.resizable.bindings( c, wo );
+		},
+
+		updateStoredSizes : function( c, wo ) {
+			var column, $header,
+				len = c.columns,
+				vars = wo.resizable_vars;
+			vars.storedSizes = [];
+			for ( column = 0; column < len; column++ ) {
+				$header = c.$headerIndexed[ column ];
+				vars.storedSizes[ column ] = $header.is(':visible') ? $header.width() : 0;
+			}
+		},
+
+		setWidth : function( $el, width, overflow ) {
+			// overflow tables need min & max width set as well
+			$el.css({
+				'width' : width,
+				'min-width' : overflow ? width : '',
+				'max-width' : overflow ? width : ''
+			});
+		},
+
+		setWidths : function( c, wo, storedSizes ) {
+			var column, $temp,
+				vars = wo.resizable_vars,
+				$extra = $( c.namespace + '_extra_headers' ),
+				$col = c.$table.children( 'colgroup' ).children( 'col' );
+			storedSizes = storedSizes || vars.storedSizes || [];
+			// process only if table ID or url match
+			if ( storedSizes.length ) {
+				for ( column = 0; column < c.columns; column++ ) {
+					// set saved resizable widths
+					ts.resizable.setWidth( c.$headerIndexed[ column ], storedSizes[ column ], vars.overflow );
+					if ( $extra.length ) {
+						// stickyHeaders needs to modify min & max width as well
+						$temp = $extra.eq( column ).add( $col.eq( column ) );
+						ts.resizable.setWidth( $temp, storedSizes[ column ], vars.overflow );
+					}
+				}
+				$temp = $( c.namespace + '_extra_table' );
+				if ( $temp.length && !ts.hasWidget( c.table, 'scroller' ) ) {
+					ts.resizable.setWidth( $temp, c.$table.outerWidth(), vars.overflow );
+				}
+			}
+		},
+
+		setHandlePosition : function( c, wo ) {
+			var startPosition,
+				tableHeight = c.$table.height(),
+				$handles = wo.$resizable_container.children(),
+				handleCenter = Math.floor( $handles.width() / 2 );
+
+			if ( ts.hasWidget( c.table, 'scroller' ) ) {
+				tableHeight = 0;
+				c.$table.closest( '.' + ts.css.scrollerWrap ).children().each(function(){
+					var $this = $(this);
+					// center table has a max-height set
+					tableHeight += $this.filter('[style*="height"]').length ? $this.height() : $this.children('table').height();
+				});
+			}
+
+			if ( !wo.resizable_includeFooter && c.$table.children('tfoot').length ) {
+				tableHeight -= c.$table.children('tfoot').height();
+			}
+			// subtract out table left position from resizable handles. Fixes #864
+			startPosition = c.$table.position().left;
+			$handles.each( function() {
+				var $this = $(this),
+					column = parseInt( $this.attr( 'data-column' ), 10 ),
+					columns = c.columns - 1,
+					$header = $this.data( 'header' );
+				if ( !$header ) { return; } // see #859
+				if ( !$header.is(':visible') ) {
+					$this.hide();
+				} else if ( column < columns || column === columns && wo.resizable_addLastColumn ) {
+					$this.css({
+						display: 'inline-block',
+						height : tableHeight,
+						left : $header.position().left - startPosition + $header.outerWidth() - handleCenter
+					});
+				}
+			});
+		},
+
+		// prevent text selection while dragging resize bar
+		toggleTextSelection : function( c, wo, toggle ) {
+			var namespace = c.namespace + 'tsresize';
+			wo.resizable_vars.disabled = toggle;
+			$( 'body' ).toggleClass( ts.css.resizableNoSelect, toggle );
+			if ( toggle ) {
+				$( 'body' )
+					.attr( 'unselectable', 'on' )
+					.bind( 'selectstart' + namespace, false );
+			} else {
+				$( 'body' )
+					.removeAttr( 'unselectable' )
+					.unbind( 'selectstart' + namespace );
+			}
+		},
+
+		bindings : function( c, wo ) {
+			var namespace = c.namespace + 'tsresize';
+			wo.$resizable_container.children().bind( 'mousedown', function( event ) {
+				// save header cell and mouse position
+				var column,
+					vars = wo.resizable_vars,
+					$extras = $( c.namespace + '_extra_headers' ),
+					$header = $( event.target ).data( 'header' );
+
+				column = parseInt( $header.attr( 'data-column' ), 10 );
+				vars.$target = $header = $header.add( $extras.filter('[data-column="' + column + '"]') );
+				vars.target = column;
+
+				// if table is not as wide as it's parent, then resize the table
+				vars.$next = event.shiftKey || wo.resizable_targetLast ?
+					$header.parent().children().not( '.resizable-false' ).filter( ':last' ) :
+					$header.nextAll( ':not(.resizable-false)' ).eq( 0 );
+
+				column = parseInt( vars.$next.attr( 'data-column' ), 10 );
+				vars.$next = vars.$next.add( $extras.filter('[data-column="' + column + '"]') );
+				vars.next = column;
+
+				vars.mouseXPosition = event.pageX;
+				ts.resizable.updateStoredSizes( c, wo );
+				ts.resizable.toggleTextSelection(c, wo, true );
+			});
+
+			$( document )
+				.bind( 'mousemove' + namespace, function( event ) {
+					var vars = wo.resizable_vars;
+					// ignore mousemove if no mousedown
+					if ( !vars.disabled || vars.mouseXPosition === 0 || !vars.$target ) { return; }
+					if ( wo.resizable_throttle ) {
+						clearTimeout( vars.timer );
+						vars.timer = setTimeout( function() {
+							ts.resizable.mouseMove( c, wo, event );
+						}, isNaN( wo.resizable_throttle ) ? 5 : wo.resizable_throttle );
+					} else {
+						ts.resizable.mouseMove( c, wo, event );
+					}
+				})
+				.bind( 'mouseup' + namespace, function() {
+					if (!wo.resizable_vars.disabled) { return; }
+					ts.resizable.toggleTextSelection( c, wo, false );
+					ts.resizable.stopResize( c, wo );
+					ts.resizable.setHandlePosition( c, wo );
+				});
+
+			// resizeEnd event triggered by scroller widget
+			$( window ).bind( 'resize' + namespace + ' resizeEnd' + namespace, function() {
+				ts.resizable.setHandlePosition( c, wo );
+			});
+
+			// right click to reset columns to default widths
+			c.$table
+				.bind( 'columnUpdate pagerComplete resizableUpdate '.split( ' ' ).join( namespace + ' ' ), function() {
+					ts.resizable.setHandlePosition( c, wo );
+				})
+				.bind( 'resizableReset' + namespace, function() {
+					ts.resizableReset( c.table );
+				})
+				.find( 'thead:first' )
+				.add( $( c.namespace + '_extra_table' ).find( 'thead:first' ) )
+				.bind( 'contextmenu' + namespace, function() {
+					// $.isEmptyObject() needs jQuery 1.4+; allow right click if already reset
+					var allowClick = wo.resizable_vars.storedSizes.length === 0;
+					ts.resizableReset( c.table );
+					ts.resizable.setHandlePosition( c, wo );
+					wo.resizable_vars.storedSizes = [];
+					return allowClick;
+				});
+
+		},
+
+		mouseMove : function( c, wo, event ) {
+			if ( wo.resizable_vars.mouseXPosition === 0 || !wo.resizable_vars.$target ) { return; }
+			// resize columns
+			var column,
+				total = 0,
+				vars = wo.resizable_vars,
+				$next = vars.$next,
+				tar = vars.storedSizes[ vars.target ],
+				leftEdge = event.pageX - vars.mouseXPosition;
+			if ( vars.overflow ) {
+				if ( tar + leftEdge > 0 ) {
+					vars.storedSizes[ vars.target ] += leftEdge;
+					ts.resizable.setWidth( vars.$target, vars.storedSizes[ vars.target ], true );
+					// update the entire table width
+					for ( column = 0; column < c.columns; column++ ) {
+						total += vars.storedSizes[ column ];
+					}
+					ts.resizable.setWidth( c.$table.add( $( c.namespace + '_extra_table' ) ), total );
+				}
+				if ( !$next.length ) {
+					// if expanding right-most column, scroll the wrapper
+					vars.$wrap[0].scrollLeft = c.$table.width();
+				}
+			} else if ( vars.fullWidth ) {
+				vars.storedSizes[ vars.target ] += leftEdge;
+				vars.storedSizes[ vars.next ] -= leftEdge;
+				ts.resizable.setWidths( c, wo );
+			} else {
+				vars.storedSizes[ vars.target ] += leftEdge;
+				ts.resizable.setWidths( c, wo );
+			}
+			vars.mouseXPosition = event.pageX;
+			// dynamically update sticky header widths
+			c.$table.triggerHandler('stickyHeadersUpdate');
+		},
+
+		stopResize : function( c, wo ) {
+			var vars = wo.resizable_vars;
+			ts.resizable.updateStoredSizes( c, wo );
+			if ( vars.useStorage ) {
+				// save all column widths
+				ts.storage( c.table, ts.css.resizableStorage, vars.storedSizes );
+				ts.storage( c.table, 'tablesorter-table-resized-width', c.$table.width() );
+			}
+			vars.mouseXPosition = 0;
+			vars.$target = vars.$next = null;
+			// will update stickyHeaders, just in case, see #912
+			c.$table.triggerHandler('stickyHeadersUpdate');
+			c.$table.triggerHandler('resizableComplete');
+		}
+	};
+
+	// this widget saves the column widths if
+	// $.tablesorter.storage function is included
+	// **************************
+	ts.addWidget({
+		id: 'resizable',
+		priority: 40,
+		options: {
+			resizable : true, // save column widths to storage
+			resizable_addLastColumn : false,
+			resizable_includeFooter: true,
+			resizable_widths : [],
+			resizable_throttle : false, // set to true (5ms) or any number 0-10 range
+			resizable_targetLast : false
+		},
+		init: function(table, thisWidget, c, wo) {
+			ts.resizable.init( c, wo );
+		},
+		format: function( table, c, wo ) {
+			ts.resizable.setHandlePosition( c, wo );
+		},
+		remove: function( table, c, wo, refreshing ) {
+			if (wo.$resizable_container) {
+				var namespace = c.namespace + 'tsresize';
+				c.$table.add( $( c.namespace + '_extra_table' ) )
+					.removeClass('hasResizable')
+					.children( 'thead' )
+					.unbind( 'contextmenu' + namespace );
+
+				wo.$resizable_container.remove();
+				ts.resizable.toggleTextSelection( c, wo, false );
+				ts.resizableReset( table, refreshing );
+				$( document ).unbind( 'mousemove' + namespace + ' mouseup' + namespace );
+			}
+		}
+	});
+
+	ts.resizableReset = function( table, refreshing ) {
+		$( table ).each(function(){
+			var index, $t,
+				c = this.config,
+				wo = c && c.widgetOptions,
+				vars = wo.resizable_vars;
+			if ( table && c && c.$headerIndexed.length ) {
+				// restore the initial table width
+				if ( vars.overflow && vars.tableWidth ) {
+					ts.resizable.setWidth( c.$table, vars.tableWidth, true );
+					if ( vars.useStorage ) {
+						ts.storage( table, 'tablesorter-table-resized-width', 'auto' );
+					}
+				}
+				for ( index = 0; index < c.columns; index++ ) {
+					$t = c.$headerIndexed[ index ];
+					if ( wo.resizable_widths && wo.resizable_widths[ index ] ) {
+						ts.resizable.setWidth( $t, wo.resizable_widths[ index ], vars.overflow );
+					} else if ( !$t.hasClass( 'resizable-false' ) ) {
+						// don't clear the width of any column that is not resizable
+						ts.resizable.setWidth( $t, '', vars.overflow );
+					}
+				}
+
+				// reset stickyHeader widths
+				c.$table.triggerHandler( 'stickyHeadersUpdate' );
+				if ( ts.storage && !refreshing ) {
+					ts.storage( this, ts.css.resizableStorage, {} );
+				}
+			}
+		});
+	};
+
+})( jQuery, window );
+
+/*! Widget: saveSort - updated 10/31/2015 (v2.24.0) *//*
+* Requires tablesorter v2.16+
+* by Rob Garrison
+*/
+;(function ($) {
+	'use strict';
+	var ts = $.tablesorter || {};
+
+	// this widget saves the last sort only if the
+	// saveSort widget option is true AND the
+	// $.tablesorter.storage function is included
+	// **************************
+	ts.addWidget({
+		id: 'saveSort',
+		priority: 20,
+		options: {
+			saveSort : true
+		},
+		init: function(table, thisWidget, c, wo) {
+			// run widget format before all other widgets are applied to the table
+			thisWidget.format(table, c, wo, true);
+		},
+		format: function(table, c, wo, init) {
+			var stored, time,
+				$table = c.$table,
+				saveSort = wo.saveSort !== false, // make saveSort active/inactive; default to true
+				sortList = { 'sortList' : c.sortList };
+			if (c.debug) {
+				time = new Date();
+			}
+			if ($table.hasClass('hasSaveSort')) {
+				if (saveSort && table.hasInitialized && ts.storage) {
+					ts.storage( table, 'tablesorter-savesort', sortList );
+					if (c.debug) {
+						console.log('saveSort widget: Saving last sort: ' + c.sortList + ts.benchmark(time));
+					}
+				}
+			} else {
+				// set table sort on initial run of the widget
+				$table.addClass('hasSaveSort');
+				sortList = '';
+				// get data
+				if (ts.storage) {
+					stored = ts.storage( table, 'tablesorter-savesort' );
+					sortList = (stored && stored.hasOwnProperty('sortList') && $.isArray(stored.sortList)) ? stored.sortList : '';
+					if (c.debug) {
+						console.log('saveSort: Last sort loaded: "' + sortList + '"' + ts.benchmark(time));
+					}
+					$table.bind('saveSortReset', function(event) {
+						event.stopPropagation();
+						ts.storage( table, 'tablesorter-savesort', '' );
+					});
+				}
+				// init is true when widget init is run, this will run this widget before all other widgets have initialized
+				// this method allows using this widget in the original tablesorter plugin; but then it will run all widgets twice.
+				if (init && sortList && sortList.length > 0) {
+					c.sortList = sortList;
+				} else if (table.hasInitialized && sortList && sortList.length > 0) {
+					// update sort change
+					ts.sortOn( c, sortList );
+				}
+			}
+		},
+		remove: function(table, c) {
+			c.$table.removeClass('hasSaveSort');
+			// clear storage
+			if (ts.storage) { ts.storage( table, 'tablesorter-savesort', '' ); }
+		}
+	});
+
+})(jQuery);
+
+return jQuery.tablesorter;
+}));
diff --git a/kfet/templates/kfet/account.html b/kfet/templates/kfet/account.html
index c4147b14..a1a1f6bb 100644
--- a/kfet/templates/kfet/account.html
+++ b/kfet/templates/kfet/account.html
@@ -37,13 +37,16 @@
 
 <section>
   <div class="table-responsive">
-    <table class="table table-hover table-condensed">
+    <table
+        class="table table-hover table-condensed sortable"
+        // Initial sort: [(trigramme,asc)]
+        data-sortlist="[[0,0]]">
       <thead>
         <tr>
           <td class="text-center">Tri.</td>
           <td>Nom</td>
           <td class="text-right">Balance</td>
-          <td class="text-center">COF</td>
+          <td class="text-center" data-sorter="yesno">COF</td>
           <td>Dpt</td>
           <td class="text-center">Promo</td>
         </tr>
diff --git a/kfet/templates/kfet/account_negative.html b/kfet/templates/kfet/account_negative.html
index 066cb832..b67b94fc 100644
--- a/kfet/templates/kfet/account_negative.html
+++ b/kfet/templates/kfet/account_negative.html
@@ -35,16 +35,19 @@
 {% block main %}
 
 <div class="table-responsive">
-  <table class="table table-hover table-condensed">
+  <table
+      class="table table-hover table-condensed sortable"
+      // Initial sort: [(trigramme,asc)]
+      data-sortlist="[[0,0]]">
     <thead>
       <tr>
         <td class="text-center">Tri.</td>
         <td>Nom</td>
         <td class="text-right">Balance</td>
         <td class="text-right">Réelle</td>
-        <td>Début</td>
+        <td data-sorter="shortDate">Début</td>
         <td>Découvert autorisé</td>
-        <td>Jusqu'au</td>
+        <td data-sorter="shortDate">Jusqu'au</td>
         <td>Balance offset</td>
       </tr>
     </thead>
@@ -63,9 +66,13 @@
             {{ neg.account.real_balance|floatformat:2 }}€
           {% endif %}
         </td>
-        <td>{{ neg.start|date:'d/m/Y H:i:s'}}</td>
+        <td title="{{ neg.start }}">
+          {{ neg.start|date:'d/m/Y H:i'}}
+        </td>
         <td>{{ neg.authz_overdraft_amount|default_if_none:'' }}</td>
-        <td>{{ neg.authz_overdrafy_until|default_if_none:'' }}</td>
+        <td title="{{ neg.authz_overdraft_until }}">
+          {{ neg.authz_overdraft_until|date:'d/m/Y H:i' }}
+        </td>
         <td>{{ neg.balance_offset|default_if_none:'' }}</td>
       </tr>
       {% endfor %}
diff --git a/kfet/templates/kfet/article.html b/kfet/templates/kfet/article.html
index 7966e797..caf70cfa 100644
--- a/kfet/templates/kfet/article.html
+++ b/kfet/templates/kfet/article.html
@@ -26,40 +26,50 @@
 
 {% block main %}
 <div class="table-responsive">
-  <table class="table table-hover table-condensed">
+  <table
+      class="table table-hover table-condensed sortable"
+      // Initial sort: [(is_sold,desc), (name,asc)]
+      data-sortlist="[[3,1], [0,0]]">
     <thead>
       <tr>
         <td>Nom</td>
         <td class="text-right">Prix</td>
         <td class="text-right">Stock</td>
-        <td class="text-right">En vente</td>
-        <td class="text-right">Affiché</td>
-        <td class="text-right">Dernier inventaire</td>
+        <td class="text-right" data-sorter="article__is_sold">En vente</td>
+        <td class="text-right" data-sorter="article__hidden">Affiché</td>
+        <td class="text-right" data-sorter="shortDate">Dernier inventaire</td>
       </tr>
     </thead>
-    <tbody>
-      {% for article in articles %}
-      {% ifchanged article.category %}
-      <tr class="section">
-        <td colspan="6">{{ article.category.name }}</td>
-      </tr>
-      {% endifchanged %}
-      <tr>
-        <td>
-          <a href="{% url 'kfet.article.read' article.pk %}">
-            {{ article.name }}
-          </a>
-        </td>
-        <td class="text-right">{{ article.price }}€</td>
-        <td class="text-right">{{ article.stock }}</td>
-        <td class="text-right">{{ article.is_sold | yesno:"En vente,Non vendu"}}</td>
-        <td class="text-right">{{ article.hidden | yesno:"Caché,Affiché" }}</td>
-        <td class="text-right">{{ article.inventory.0.at }}</td>
-      </tr>
-      {% endfor %}
-    </tbody>
+    {% regroup articles by category as category_list %}
+
+    {% for category in category_list %}
+      <tbody class="tablesorter-no-sort">
+        <tr class="section">
+          <td colspan="6">{{ category.grouper }}</td>
+        </tr>
+      </tbody>
+      <tbody>
+        {% for article in category.list %}
+          <tr>
+            <td>
+              <a href="{% url 'kfet.article.read' article.pk %}">
+                {{ article.name }}
+              </a>
+            </td>
+            <td class="text-right">{{ article.price }}€</td>
+            <td class="text-right">{{ article.stock }}</td>
+            <td class="text-right">{{ article.is_sold | yesno:"En vente,Non vendu"}}</td>
+            <td class="text-right">{{ article.hidden | yesno:"Caché,Affiché" }}</td>
+            {% with last_inventory=article.inventory.0 %}
+            <td class="text-right" title="{{ last_inventory.at }}">
+              {{ last_inventory.at|date:'d/m/Y H:i' }}
+            </td>
+            {% endwith %}
+          </tr>
+        {% endfor %}
+      </tbody>
+    {% endfor %}
   </table>
 </div>
-</div>
 
 {% endblock %}
diff --git a/kfet/templates/kfet/article_inventories_snippet.html b/kfet/templates/kfet/article_inventories_snippet.html
index 4f76dfe0..df5c8dea 100644
--- a/kfet/templates/kfet/article_inventories_snippet.html
+++ b/kfet/templates/kfet/article_inventories_snippet.html
@@ -1,7 +1,10 @@
-<table class="table table-hover table-condensed">
+<table
+    class="table table-hover table-condensed sortable"
+    // Initial sort: [(inventory.at,desc)]
+    data-sortlist="[[0,1]]">
   <thead>
     <tr>
-      <td>Date</td>
+      <td data-sorter="shortDate">Date</td>
       <td>Stock</td>
       <td>Erreur</td>
     </tr>
@@ -9,9 +12,9 @@
   <tbody>
     {% for inventoryart in inventoryarts %}
     <tr>
-      <td>
+      <td title="{{ inventoryart.inventory.at }}">
         <a href="{% url "kfet.inventory.read" inventoryart.inventory.pk %}">
-          {{ inventoryart.inventory.at }}
+          {{ inventoryart.inventory.at|date:'d/m/Y H:i' }}
         </a>
       </td>
       <td>{{ inventoryart.stock_new }}</td>
diff --git a/kfet/templates/kfet/article_suppliers_snippet.html b/kfet/templates/kfet/article_suppliers_snippet.html
index bd5970fd..84922035 100644
--- a/kfet/templates/kfet/article_suppliers_snippet.html
+++ b/kfet/templates/kfet/article_suppliers_snippet.html
@@ -1,7 +1,10 @@
-<table class="table table-hover table-condensed">
+<table
+    class="table table-hover table-condensed sortable"
+    // Initial sort: [(at,desc)]
+    data-sortlist="[[0,1]]">
   <thead>
     <tr>
-      <td>Date</td>
+      <td data-sorter="shortDate">Date</td>
       <td>Fournisseur</td>
       <td>HT</td>
       <td>TVA</td>
@@ -11,7 +14,9 @@
   <tbody>
     {% for supplierart in supplierarts %}
     <tr>
-      <td>{{ supplierart.at }}</td>
+      <td title="{{ supplierart.at }}">
+        {{ supplierart.at|date:'d/m/Y' }}
+      </td>
       <td>{{ supplierart.supplier.name }}</td>
       <td>{{ supplierart.price_HT|default_if_none:"" }}</td>
       <td>{{ supplierart.TVA|default_if_none:"" }}</td>
diff --git a/kfet/templates/kfet/base.html b/kfet/templates/kfet/base.html
index 8f90f459..a3a671ab 100644
--- a/kfet/templates/kfet/base.html
+++ b/kfet/templates/kfet/base.html
@@ -24,6 +24,7 @@
     <script src="https://maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js" integrity="sha384-Tc5IQib027qvyjSMfHjOMaLkfuWVxZxUPnCJA7l2mCWNIpG9mGCD8wGNIcPD7Txa" crossorigin="anonymous"></script>
     <script type="text/javascript" src="{% static 'kfet/js/jquery-ui.min.js' %}"></script>
     <script type="text/javascript" src="{% static 'kfet/js/jquery-confirm.js' %}"></script>
+    <script type="text/javascript" src="{% static 'kfet/vendor/jquery-tablesorter/jquery.tablesorter.combined.js' %}"></script>
     <script type="text/javascript" src="{% static 'kfet/js/reconnecting-websocket.js' %}"></script>
     <script type="text/javascript" src="{% static 'kfet/js/moment.js' %}"></script>
     <script type="text/javascript" src="{% static 'kfet/js/moment-fr.js' %}"></script>
diff --git a/kfet/templates/kfet/category.html b/kfet/templates/kfet/category.html
index 0ea96c8f..a31cc3cf 100644
--- a/kfet/templates/kfet/category.html
+++ b/kfet/templates/kfet/category.html
@@ -17,12 +17,15 @@
 {% block main %}
 
 <div class="table-responsive">
-  <table class="table table-hover table-condensed">
+  <table
+      class="table table-hover table-condensed sortable"
+      // Initial sort: [(name,asc)]
+      data-sortlist="[[0,0]]">
     <thead>
       <tr>
         <td>Nom</td>
         <td class="text-right">Nombre d'articles</td>
-        <td class="text-right">Peut être majorée</td>
+        <td class="text-right" data-sorter="yesno">Peut être majorée</td>
       </tr>
     </thead>
     <tbody>
diff --git a/kfet/templates/kfet/checkout.html b/kfet/templates/kfet/checkout.html
index 96373c49..c2c5e4bc 100644
--- a/kfet/templates/kfet/checkout.html
+++ b/kfet/templates/kfet/checkout.html
@@ -24,13 +24,16 @@
 {% block main %}
 
 <div class="table-responsive">
-  <table class="table table-hover table-condensed">
+  <table
+      class="table table-hover table-condensed sortable"
+      // Initial sort: [(valid_to,desc)]
+      data-sortlist="[[3,1]]">
     <thead>
       <tr>
         <td>Nom</td>
         <td class="text-right">Balance</td>
-        <td class="text-right">Déb. valid.</td>
-        <td class="text-right">Fin valid.</td>
+        <td class="text-right" data-parser="shortDate">Déb. valid.</td>
+        <td class="text-right" data-parser="shortDate">Fin valid.</td>
         <td class="text-right">Protégée</td>
       </tr>
     </thead>
@@ -43,8 +46,12 @@
           </a>
         </td>
         <td class="text-right">{{ checkout.balance}}€</td>
-        <td class="text-right">{{ checkout.valid_from }}</td>
-        <td class="text-right">{{ checkout.valid_to }}</td>
+        <td class="text-right" title="{{ checkout.valid_from }}">
+          {{ checkout.valid_from|date:'d/m/Y H:i' }}
+        </td>
+        <td class="text-right" title="{{ checkout.valid_to }}">
+          {{ checkout.valid_to|date:'d/m/Y H:i' }}
+        </td>
         <td class="text-right">{{ checkout.is_protected|yesno }}</td>
       </tr>
       {% endfor %}
diff --git a/kfet/templates/kfet/checkout_read.html b/kfet/templates/kfet/checkout_read.html
index 12ba7e64..37a6e173 100644
--- a/kfet/templates/kfet/checkout_read.html
+++ b/kfet/templates/kfet/checkout_read.html
@@ -14,10 +14,13 @@
     {% if not statements %}
       Pas de relevé
     {% else %}
-      <table class="table table-hover table-condensed">
+      <table
+          class="table table-hover table-condensed sortable"
+          // Initial sort: [(at,desc)]
+          data-sortlist="[[0,1]]">
         <thead>
           <tr>
-            <td>Date/heure</td>
+            <td data-sorter="shortDate">Date/heure</td>
             <td>Montant pris</td>
             <td>Montant laissé</td>
             <td>Erreur</td>
@@ -25,9 +28,9 @@
         <tbody>
           {% for statement in statements %}
           <tr>
-            <td>
+            <td title="{{ statement.at }}">
               <a href="{% url 'kfet.checkoutstatement.update' checkout.pk statement.pk %}">
-                {{ statement.at }}
+                {{ statement.at|date:'d/m/Y H:i' }}
               </a>
             </td>
             <td>{{ statement.amount_taken }}</td>
diff --git a/kfet/templates/kfet/inventory.html b/kfet/templates/kfet/inventory.html
index 237c45cd..f05dc32a 100644
--- a/kfet/templates/kfet/inventory.html
+++ b/kfet/templates/kfet/inventory.html
@@ -17,10 +17,13 @@
 {% block main %}
 
 <div class="table-responsive">
-  <table class="table table-hover table-condensed">
+  <table
+      class="table table-hover table-condensed sortable"
+      // Initial sort: [(at,desc)]
+      data-sortlist="[[0,1]]">
     <thead>
       <tr>
-        <td>Date</td>
+        <td data-sorter="shortDate">Date</td>
         <td>Par</td>
         <td>Nb articles</td>
       </tr>
@@ -28,9 +31,9 @@
     <tbody>
       {% for inventory in inventories %}
       <tr>
-        <td>
+        <td title="{{ inventory.at }}">
           <a href="{% url 'kfet.inventory.read' inventory.pk %}">
-            <span>{{ inventory.at }}</span>
+            {{ inventory.at|date:'d/m/Y H:i' }}
           </a>
         </td>
         <td>{{ inventory.by }}</td>
diff --git a/kfet/templates/kfet/inventory_read.html b/kfet/templates/kfet/inventory_read.html
index dd5ceb2c..1edc21e0 100644
--- a/kfet/templates/kfet/inventory_read.html
+++ b/kfet/templates/kfet/inventory_read.html
@@ -27,7 +27,10 @@
 {% block main %}
 
 <div class="table-responsive">
-  <table class="table table-condensed">
+  <table
+      class="table table-condensed table-hover table-striped sortable"
+      // Initial sort: [(article.name,asc)]
+      data-sortlist="[[0,0]]">
     <thead>
       <tr>
         <td>Article</td>
@@ -36,25 +39,28 @@
         <td>Erreur</td>
       </tr>
     </thead>
-    <tbody>
-      {% for inventoryart in inventoryarts %}
-        {% ifchanged inventoryart.article.category %}
-          <tr class="section">
-            <td colspan="4">{{ inventoryart.article.category.name }}</td>
-          </tr>
-        {% endifchanged %}
-        <tr>
-          <td>
-            <a href="{% url "kfet.article.read" inventoryart.article.id %}">
-              {{ inventoryart.article.name }}
-            </a>
-          </td>
-          <td>{{ inventoryart.stock_old }}</td>
-          <td>{{ inventoryart.stock_new }}</td>
-          <td>{{ inventoryart.stock_error }}</td>
+    {% regroup inventoryarts by article.category as category_list %}
+    {% for category in category_list %}
+      <tbody class="tablesorter-no-sort">
+        <tr class="section">
+          <td colspan="4">{{ category.grouper.name }}</td>
         </tr>
-      {% endfor %}
-    </tbody>
+      </tbody>
+      <tbody>
+        {% for inventoryart in category.list %}
+          <tr>
+            <td>
+              <a href="{% url "kfet.article.read" inventoryart.article.id %}">
+                {{ inventoryart.article.name }}
+              </a>
+            </td>
+            <td>{{ inventoryart.stock_old }}</td>
+            <td>{{ inventoryart.stock_new }}</td>
+            <td>{{ inventoryart.stock_error }}</td>
+          </tr>
+        {% endfor %}
+      </tbody>
+    {% endfor %}
   </table>
 </div>
 
diff --git a/kfet/templates/kfet/order.html b/kfet/templates/kfet/order.html
index 53ef1bfb..0e4ed868 100644
--- a/kfet/templates/kfet/order.html
+++ b/kfet/templates/kfet/order.html
@@ -55,11 +55,14 @@
 <section>
   <h2>Liste des commandes</h2>
   <div class="table-responsive">
-    <table class="table table-hover table-condensed">
+    <table
+        class="table table-hover table-condensed sortable"
+        // Initial sort: [(at,desc)]
+        data-sortlist="[[1,1]]">
       <thead>
         <tr>
-          <td></td>
-          <td>Date</td>
+          <td data-sorter="false"></td>
+          <td data-parser="shortDate">Date</td>
           <td>Fournisseur</td>
           <td>Inventaire</td>
         </tr>
@@ -74,9 +77,9 @@
               </a>
             {% endif %}
           </td>
-          <td>
+          <td tile="{{ order.at }}">
             <a href="{% url 'kfet.order.read' order.pk %}">
-              {{ order.at }}
+              {{ order.at|date:'d/m/Y H:i' }}
             </a>
           </td>
           <td>{{ order.supplier }}</td>
diff --git a/kfet/templates/kfet/order_create.html b/kfet/templates/kfet/order_create.html
index d95cafe3..e2e7c4cd 100644
--- a/kfet/templates/kfet/order_create.html
+++ b/kfet/templates/kfet/order_create.html
@@ -11,60 +11,79 @@
 <form action="" method="post">
   {% csrf_token %}
   <div class="table-responsive">
-  <table class="table table-hover table-condensed table-condensed-input text-center table-striped">
+  <table
+      class="table table-hover table-condensed table-condensed-input text-center table-striped sortable"
+      // Initial sort: [(name,asc)]
+      data-sortlist="[[0,0]]">
     <thead>
       <tr>
         <td rowspan="2">Article</td>
-        <td colspan="{{ scale|length }}">Ventes
-            <span class='glyphicon glyphicon-question-sign' title="Ventes des 5 dernières semaines" data-placement="bottom"></span>
-            </td>
-        <td rowspan="2">V. moy.<br>
-            <span class='glyphicon glyphicon-question-sign' title="Moyenne des ventes" data-placement="bottom"></span>
-            </td>
-        <td rowspan="2">E.T.<br>
-            <span class='glyphicon glyphicon-question-sign' title="Écart-type des ventes" data-placement="bottom"></span>
-            </td>
-        <td rowspan="2">Prév.<br>
-            <span class='glyphicon glyphicon-question-sign' title="Prévision de ventes" data-placement="bottom"></span>
-            </td>
+        <td colspan="{{ scale|length }}">
+          Ventes
+          <i class='glyphicon glyphicon-question-sign' title="Ventes des 5 dernières semaines" data-placement="bottom"></i>
+        </td>
+        <td rowspan="2">
+          V. moy.
+          <br>
+          <i class='glyphicon glyphicon-question-sign' title="Moyenne des ventes" data-placement="bottom"></i>
+        </td>
+        <td rowspan="2" data-sorter="false">
+          E.T.
+          <br>
+          <i class='glyphicon glyphicon-question-sign' title="Écart-type des ventes" data-placement="bottom"></i>
+        </td>
+        <td rowspan="2">
+          Prév.
+          <br>
+          <i class='glyphicon glyphicon-question-sign' title="Prévision de ventes" data-placement="bottom"></i>
+        </td>
         <td rowspan="2">Stock</td>
-        <td rowspan="2">Box<br>
-            <span class='glyphicon glyphicon-question-sign' title="Capacité d'une boite" data-placement="bottom"></span>
-            </td>
-        <td rowspan="2">Rec.<br>
-            <span class='glyphicon glyphicon-question-sign' title="Quantité conseillée" data-placement="bottom"></span>
-            </td>
-        <td rowspan="2">Commande</td>
+        <td rowspan="2" data-sorter="false">
+          Box
+          <br>
+          <i class='glyphicon glyphicon-question-sign' title="Capacité d'une boite" data-placement="bottom"></i>
+        </td>
+        <td rowspan="2">
+          Rec.
+          <br>
+          <i class='glyphicon glyphicon-question-sign' title="Quantité conseillée" data-placement="bottom"></i>
+        </td>
+        <td rowspan="2" data-sorter="false" class="small-width">
+          Commande
+        </td>
       </tr>
       <tr>
         {% for label in scale.get_labels %}
-        <td>{{ label }}</td>
+        <td class="sm-padding">{{ label }}</td>
         {% endfor %}
       </tr>
     </thead>
-    <tbody>
-      {% for form in formset %}
-        {% ifchanged form.category %}
-          <tr class='section text-left'>
-            <td colspan="{{ scale|length|add:'8' }}">{{ form.category_name }}</td>
-          </tr>
-        {% endifchanged %}
-        <tr>
-          {{ form.article }}
-          <td class="text-left">{{ form.name }}</td>
-          {% for v_chunk in form.v_all %}
-          <td>{{ v_chunk }}</td>
-          {% endfor %}
-          <td>{{ form.v_moy }}</td>
-          <td>{{ form.v_et }}</td>
-          <td>{{ form.v_prev }}</td>
-          <td>{{ form.stock }}</td>
-          <td>{{ form.box_capacity|default:"" }}</td>
-          <td>{{ form.c_rec }}</td>
-          <td class="nopadding">{{ form.quantity_ordered | add_class:"form-control" }}</td>
+    {% regroup formset by category_name as category_list %}
+    {% for category in category_list %}
+      <tbody class="tablesorter-no-sort">
+        <tr class='section text-left'>
+          <td colspan="{{ scale|length|add:'8' }}">{{ category.grouper }}</td>
         </tr>
-      {% endfor %}
-    </tbody>
+      </tbody>
+      <tbody>
+        {% for form in category.list %}
+          <tr>
+            {{ form.article }}
+            <td class="text-left">{{ form.name }}</td>
+            {% for v_chunk in form.v_all %}
+            <td>{{ v_chunk }}</td>
+            {% endfor %}
+            <td>{{ form.v_moy }}</td>
+            <td>{{ form.v_et }}</td>
+            <td>{{ form.v_prev }}</td>
+            <td>{{ form.stock }}</td>
+            <td>{{ form.box_capacity|default:"" }}</td>
+            <td>{{ form.c_rec }}</td>
+            <td class="nopadding">{{ form.quantity_ordered|add_class:"form-control" }}</td>
+          </tr>
+        {% endfor %}
+      </tbody>
+    {% endfor %}
   </table>
   </div>
   {{ formset.management_form }}
diff --git a/kfet/templates/kfet/order_read.html b/kfet/templates/kfet/order_read.html
index 69b74420..9241c394 100644
--- a/kfet/templates/kfet/order_read.html
+++ b/kfet/templates/kfet/order_read.html
@@ -42,7 +42,10 @@
 <section>
   <h2>Détails</h2>
   <div class="table-responsive">
-    <table class="table table-condensed">
+    <table
+        class="table table-condensed table-hover table-striped sortable"
+        // Initial sort: [(article.name,asc)]
+        data-sortlist="[[0,0]]">
       <thead>
         <tr>
           <td>Article</td>
@@ -51,32 +54,35 @@
           <td>Reçu</td>
         </tr>
       </thead>
-      <tbody>
-        {% for orderart in orderarts %}
-          {% ifchanged orderart.article.category %}
-            <tr class="section">
-              <td colspan="4">{{ orderart.article.category.name }}</td>
-            </tr>
-          {% endifchanged %}
-          <tr>
-            <td>
-              <a href="{% url "kfet.article.read" orderart.article.id %}">
-                {{ orderart.article.name }}
-              </a>
-            </td>
-            <td>{{ orderart.quantity_ordered }}</td>
-            <td>
-              {% if orderart.article.box_capacity %}
-                {# c'est une division ! #}
-                {% widthratio orderart.quantity_ordered orderart.article.box_capacity 1 %}
-              {% endif %}
-            </td>
-            <td>
-              {{ orderart.quantity_received|default_if_none:'' }}
-            </td>
+      {% regroup orderarts by article.category as category_list %}
+      {% for category in category_list %}
+        <tbody class="tablesorter-no-sort">
+          <tr class="section">
+            <td colspan="4">{{ category.grouper.name }}</td>
           </tr>
-        {% endfor %}
-      </tbody>
+        </tbody>
+        <tbody>
+          {% for orderart in category.list %}
+            <tr>
+              <td>
+                <a href="{% url "kfet.article.read" orderart.article.id %}">
+                  {{ orderart.article.name }}
+                </a>
+              </td>
+              <td>{{ orderart.quantity_ordered }}</td>
+              <td>
+                {% if orderart.article.box_capacity %}
+                  {# c'est une division ! #}
+                  {% widthratio orderart.quantity_ordered orderart.article.box_capacity 1 %}
+                {% endif %}
+              </td>
+              <td>
+                {{ orderart.quantity_received|default_if_none:'' }}
+              </td>
+            </tr>
+          {% endfor %}
+        </tbody>
+      {% endfor %}
     </table>
   </div>
 </section>
diff --git a/kfet/views.py b/kfet/views.py
index f1dd6834..f0665ef6 100644
--- a/kfet/views.py
+++ b/kfet/views.py
@@ -1839,7 +1839,7 @@ def order_create(request, pk):
     else:
         formset = cls_formset(initial=initial)
 
-    scale.label_fmt = "S -{rev_i}"
+    scale.label_fmt = "S-{rev_i}"
 
     return render(request, 'kfet/order_create.html', {
         'supplier': supplier,

From 212528011acd58b14dc64859b288d9b33caf5750 Mon Sep 17 00:00:00 2001
From: Ludovic Stephan <lstephan@clipper.ens.fr>
Date: Tue, 19 Dec 2017 11:40:02 +0100
Subject: [PATCH 056/101] Add some tests

---
 bda/models.py             | 63 +++++++++++++++++------------------
 bda/tests/test_revente.py | 69 +++++++++++++++++++++++++++++++++++++++
 2 files changed, 101 insertions(+), 31 deletions(-)
 create mode 100644 bda/tests/test_revente.py

diff --git a/bda/models.py b/bda/models.py
index 59827621..1c081a56 100644
--- a/bda/models.py
+++ b/bda/models.py
@@ -352,7 +352,7 @@ class SpectacleRevente(models.Model):
         self.shotgun = True
         self.save()
 
-    def tirage(self):
+    def tirage(self, send_mails=True):
         """
         Lance le tirage au sort associé à la revente. Un gagnant est choisi
         parmis les personnes intéressées par le spectacle. Les personnes sont
@@ -366,37 +366,38 @@ class SpectacleRevente(models.Model):
             # Envoie un mail au gagnant et au vendeur
             winner = random.choice(inscrits)
             self.soldTo = winner
-            datatuple = []
-            context = {
-                'acheteur': winner.user,
-                'vendeur': seller.user,
-                'show': spectacle,
-            }
-            datatuple.append((
-                'bda-revente-winner',
-                context,
-                settings.MAIL_DATA['revente']['FROM'],
-                [winner.user.email],
-            ))
-            datatuple.append((
-                'bda-revente-seller',
-                context,
-                settings.MAIL_DATA['revente']['FROM'],
-                [seller.user.email]
-            ))
+            if send_mails:
+                datatuple = []
+                context = {
+                    'acheteur': winner.user,
+                    'vendeur': seller.user,
+                    'show': spectacle,
+                }
+                datatuple.append((
+                    'bda-revente-winner',
+                    context,
+                    settings.MAIL_DATA['revente']['FROM'],
+                    [winner.user.email],
+                ))
+                datatuple.append((
+                    'bda-revente-seller',
+                    context,
+                    settings.MAIL_DATA['revente']['FROM'],
+                    [seller.user.email]
+                ))
 
-            # Envoie un mail aux perdants
-            for inscrit in inscrits:
-                if inscrit != winner:
-                    new_context = dict(context)
-                    new_context['acheteur'] = inscrit.user
-                    datatuple.append((
-                        'bda-revente-loser',
-                        new_context,
-                        settings.MAIL_DATA['revente']['FROM'],
-                        [inscrit.user.email]
-                    ))
-            send_mass_custom_mail(datatuple)
+                # Envoie un mail aux perdants
+                for inscrit in inscrits:
+                    if inscrit != winner:
+                        new_context = dict(context)
+                        new_context['acheteur'] = inscrit.user
+                        datatuple.append((
+                            'bda-revente-loser',
+                            new_context,
+                            settings.MAIL_DATA['revente']['FROM'],
+                            [inscrit.user.email]
+                        ))
+                send_mass_custom_mail(datatuple)
 
         # Si personne ne veut de la place, elle part au shotgun
         else:
diff --git a/bda/tests/test_revente.py b/bda/tests/test_revente.py
new file mode 100644
index 00000000..8ef7be19
--- /dev/null
+++ b/bda/tests/test_revente.py
@@ -0,0 +1,69 @@
+from django.contrib.auth.models import User
+from django.test import TestCase, Client
+from django.utils import timezone
+
+from datetime import timedelta
+
+from bda.models import (Tirage, Spectacle, Salle, CategorieSpectacle,
+                        SpectacleRevente, Attribution, Participant)
+
+
+class TestModels(TestCase):
+    def setUp(self):
+        self.tirage = Tirage.objects.create(
+                title="Tirage test",
+                appear_catalogue=True,
+                ouverture=timezone.now(),
+                fermeture=timezone.now()
+        )
+        self.category = CategorieSpectacle.objects.create(name="Category")
+        self.location = Salle.objects.create(name="here")
+        self.spectacle_soon = Spectacle.objects.create(
+            title="foo", date=timezone.now()+timedelta(days=1),
+            location=self.location, price=0, slots=42,
+            tirage=self.tirage, listing=False, category=self.category
+        )
+        self.spectacle_later = Spectacle.objects.create(
+            title="bar", date=timezone.now()+timedelta(days=30),
+            location=self.location, price=0, slots=42,
+            tirage=self.tirage, listing=False, category=self.category
+        )
+
+        user_buyer = User.objects.create_user(
+                username="bda_buyer", password="testbuyer"
+        )
+        user_seller = User.objects.create_user(
+                username="bda_seller", password="testseller"
+        )
+        self.buyer = Participant.objects.create(
+                user=user_buyer, tirage=self.tirage
+        )
+        self.seller = Participant.objects.create(
+                user=user_seller, tirage=self.tirage
+        )
+
+        self.attr_soon = Attribution.objects.create(
+                participant=self.seller, spectacle=self.spectacle_soon
+        )
+        self.attr_later = Attribution.objects.create(
+                participant=self.seller, spectacle=self.spectacle_later
+        )
+        self.revente_soon = SpectacleRevente.objects.create(
+                seller=self.seller,
+                attribution=self.attr_soon
+        )
+        self.revente_later = SpectacleRevente.objects.create(
+                seller=self.seller,
+                attribution=self.attr_later
+        )
+
+    def test_urgent(self):
+        self.assertTrue(self.revente_soon.is_urgent)
+        self.assertFalse(self.revente_later.is_urgent)
+
+    def test_tirage(self):
+        self.revente_soon.confirmed_entry.add(self.buyer)
+
+        self.assertEqual(self.revente_soon.tirage(send_mails=False),
+                         self.buyer)
+        self.assertIsNone(self.revente_later.tirage(send_mails=False))

From f1bbade002663adff353ba477a6a9889580416b8 Mon Sep 17 00:00:00 2001
From: Ludovic Stephan <lstephan@clipper.ens.fr>
Date: Tue, 19 Dec 2017 12:40:50 +0100
Subject: [PATCH 057/101] Better labels for `revente` objects

The label for the ReventeModelMultipleChoiceField now depends on a
`own` parameter, which determines if we display the seller or the
buyer's name.
---
 bda/forms.py | 28 ++++++++++++++++++++++++++--
 1 file changed, 26 insertions(+), 2 deletions(-)

diff --git a/bda/forms.py b/bda/forms.py
index 2929f771..14e91ce2 100644
--- a/bda/forms.py
+++ b/bda/forms.py
@@ -47,8 +47,29 @@ class AttributionModelMultipleChoiceField(forms.ModelMultipleChoiceField):
 
 
 class ReventeModelMultipleChoiceField(forms.ModelMultipleChoiceField):
+    def __init__(self, *args, own=True, **kwargs):
+        super().__init__(*args, **kwargs)
+        self.own = own
+
     def label_from_instance(self, obj):
-        return str(obj.attribution.spectacle)
+        label = "{show}{suffix}"
+        suffix = ""
+        if self.own:
+            # C'est notre propre revente : pas besoin de spécifier le vendeur
+            if obj.soldTo is not None:
+                suffix = " -- Vendue à {firstname} {lastname}".format(
+                            firstname=obj.soldTo.user.first_name,
+                            lastname=obj.soldTo.user.last_name,
+                        )
+        else:
+            # Ce n'est pas à nous : on ne voit jamais l'acheteur
+            suffix = " -- Vendue par {firstname} {lastname}".format(
+                            firstname=obj.seller.user.first_name,
+                            lastname=obj.seller.user.last_name,
+                        )
+
+        return label.format(show=str(obj.attribution.spectacle),
+                            suffix=suffix)
 
 
 class ResellForm(forms.Form):
@@ -106,6 +127,7 @@ class InscriptionReventeForm(forms.Form):
 
 class ReventeTirageAnnulForm(forms.Form):
     reventes = ReventeModelMultipleChoiceField(
+                  own=False,
                   label='',
                   queryset=SpectacleRevente.objects.none(),
                   widget=forms.CheckboxSelectMultiple,
@@ -116,12 +138,14 @@ class ReventeTirageAnnulForm(forms.Form):
         super().__init__(*args, **kwargs)
         self.fields['reventes'].queryset = (
             participant.entered.filter(soldTo__isnull=True)
-                       .select_related('attribution__spectacle')
+                       .select_related('attribution__spectacle',
+                                       'seller__user')
         )
 
 
 class ReventeTirageForm(forms.Form):
     reventes = ReventeModelMultipleChoiceField(
+                  own=False,
                   label='',
                   queryset=SpectacleRevente.objects.none(),
                   widget=forms.CheckboxSelectMultiple,

From 1783196a9c137d52fcfe033a97c7c09bf2cec140 Mon Sep 17 00:00:00 2001
From: Ludovic Stephan <lstephan@clipper.ens.fr>
Date: Tue, 19 Dec 2017 12:41:50 +0100
Subject: [PATCH 058/101] Management view only deals with Revente objects

Except for Revente creation, every form is now handled with revente
objects, to use the display option in the previous commit.
---
 bda/forms.py                           | 34 +++++++++++++-------------
 bda/templates/bda/revente/manage.html  | 16 ++++++------
 bda/templates/bda/revente/tirages.html |  4 +--
 bda/views.py                           | 20 +++++++--------
 4 files changed, 37 insertions(+), 37 deletions(-)

diff --git a/bda/forms.py b/bda/forms.py
index 14e91ce2..90b0359f 100644
--- a/bda/forms.py
+++ b/bda/forms.py
@@ -91,7 +91,8 @@ class ResellForm(forms.Form):
 
 
 class AnnulForm(forms.Form):
-    attributions = AttributionModelMultipleChoiceField(
+    reventes = ReventeModelMultipleChoiceField(
+                         own=True,
                          label='',
                          queryset=Attribution.objects.none(),
                          widget=forms.CheckboxSelectMultiple,
@@ -99,14 +100,13 @@ class AnnulForm(forms.Form):
 
     def __init__(self, participant, *args, **kwargs):
         super(AnnulForm, self).__init__(*args, **kwargs)
-        self.fields['attributions'].queryset = (
-            participant.attribution_set
-            .filter(spectacle__date__gte=timezone.now(),
-                    revente__isnull=False,
-                    revente__notif_sent=False,
-                    revente__soldTo__isnull=True)
-            .select_related('spectacle', 'spectacle__location',
-                            'participant__user')
+        self.fields['reventes'].queryset = (
+            participant.original_shows
+            .filter(attribution__spectacle__date__gte=timezone.now(),
+                    notif_sent=False,
+                    soldTo__isnull=True)
+            .select_related('attribution__spectacle',
+                            'attribution__spectacle__location')
         )
 
 
@@ -165,18 +165,18 @@ class ReventeTirageForm(forms.Form):
 
 
 class SoldForm(forms.Form):
-    attributions = AttributionModelMultipleChoiceField(
+    reventes = ReventeModelMultipleChoiceField(
+                        own=True,
                         label='',
                         queryset=Attribution.objects.none(),
                         widget=forms.CheckboxSelectMultiple)
 
     def __init__(self, participant, *args, **kwargs):
         super(SoldForm, self).__init__(*args, **kwargs)
-        self.fields['attributions'].queryset = (
-            participant.attribution_set
-            .filter(revente__isnull=False,
-                    revente__soldTo__isnull=False)
-            .exclude(revente__soldTo=participant)
-            .select_related('spectacle', 'spectacle__location',
-                            'participant__user')
+        self.fields['reventes'].queryset = (
+            participant.original_shows
+            .filter(soldTo__isnull=False)
+            .exclude(soldTo=participant)
+            .select_related('attribution__spectacle',
+                            'attribution__spectacle__location')
         )
diff --git a/bda/templates/bda/revente/manage.html b/bda/templates/bda/revente/manage.html
index 8162d55d..cf0ba80e 100644
--- a/bda/templates/bda/revente/manage.html
+++ b/bda/templates/bda/revente/manage.html
@@ -4,7 +4,7 @@
 {% block realcontent %}
 
 <h2>Gestion des places que je revends</h2>
-{% with resell_attributions=resellform.attributions annul_attributions=annulform.attributions sold_attributions=soldform.attributions %}
+{% with resell_attributions=resellform.attributions annul_reventes=annulform.reventes sold_reventes=soldform.reventes %}
 
 {% if resellform.attributions %}
 <br />
@@ -29,10 +29,10 @@
 <hr />
 {% endif %}
 
-{% if annul_attributions or overdue %}
+{% if annul_reventes or overdue %}
 <h3>Places en cours de revente</h3>
 <form action="" method="post">
-    {% if annul_attributions %}
+    {% if annul_reventes %}
         <div class="bg-info text-info center-block">
             <span class="glyphicon glyphicon-info-sign" aria-hidden="true"></span>
             Vous pouvez annuler les places mises en vente il y a moins d'une heure.
@@ -42,8 +42,8 @@
     <div class='form-group'>
         <div class='multiple-checkbox'>
             <ul>
-                {% for attrib in annul_attributions %}
-                    <li>{{ attrib.tag }} {{ attrib.choice_label }}</li>
+                {% for revente in annul_reventes %}
+                    <li>{{ revente.tag }} {{ revente.choice_label }}</li>
                 {% endfor %}
                 {% for attrib in overdue %}
                     <li>
@@ -54,7 +54,7 @@
             </ul>
         </div>
     </div>
-    {% if annul_attributions %}
+    {% if annul_reventes %}
     <input type="submit" class="btn btn-primary" name="annul" value="Annuler les reventes sélectionnées">
     {% endif %}
 </form>
@@ -62,7 +62,7 @@
 <hr />
 {% endif %}
 
-{% if sold_attributions %}
+{% if sold_reventes %}
 <h3>Places revendues</h3>
 <form action="" method="post">
     <div class="bg-info text-info center-block">
@@ -82,7 +82,7 @@
     <button type="submit" class="btn btn-primary" name="reinit">Réinitialiser</button>
 </form>
 {% endif %}
-{% if not resell_attributions and not annul_attributions and not overdue and not sold_attributions %}
+{% if not resell_attributions and not annul_attributions and not overdue and not sold_reventes %}
 <p>Plus de reventes possibles !</p>
 {% endif %}
 
diff --git a/bda/templates/bda/revente/tirages.html b/bda/templates/bda/revente/tirages.html
index 91d39c90..b7017806 100644
--- a/bda/templates/bda/revente/tirages.html
+++ b/bda/templates/bda/revente/tirages.html
@@ -11,7 +11,7 @@
     <div class="bg-info text-info center-block">
         <span class="glyphicon glyphicon-info-sign" aria-hidden="true"></span>
         Vous pouvez vous désinscrire des reventes suivantes tant que le tirage n'a
-        pas eu lieu
+        pas eu lieu.
     </div>
     <div class="bootstrap-form-reduce">
         {% csrf_token %}
@@ -34,7 +34,7 @@
 <form class="form-horizontal" action="" method="post">
     <div class="bg-info text-info center-block">
         <span class="glyphicon glyphicon-info-sign" aria-hidden="true"></span>
-        Vous pouvez vous inscrire aux tirage en cours suivants
+        Vous pouvez vous inscrire aux tirage en cours suivants.
     </div>
     <div class="bootstrap-form-reduce">
         {% csrf_token %}
diff --git a/bda/views.py b/bda/views.py
index 67fa2486..4cb35c52 100644
--- a/bda/views.py
+++ b/bda/views.py
@@ -401,18 +401,18 @@ def revente_manage(request, tirage_id):
         elif 'annul' in request.POST:
             annulform = AnnulForm(participant, request.POST, prefix='annul')
             if annulform.is_valid():
-                attributions = annulform.cleaned_data["attributions"]
-                for attribution in attributions:
-                    attribution.revente.delete()
+                reventes = annulform.cleaned_data["reventes"]
+                for revente in reventes:
+                    revente.delete()
         # On confirme une vente en transférant la place à la personne qui a
         # gagné le tirage
         elif 'transfer' in request.POST:
             soldform = SoldForm(participant, request.POST, prefix='sold')
             if soldform.is_valid():
-                attributions = soldform.cleaned_data['attributions']
-                for attribution in attributions:
-                    attribution.participant = attribution.revente.soldTo
-                    attribution.save()
+                reventes = soldform.cleaned_data['reventes']
+                for reventes in reventes:
+                    revente.attribution.participant = revente.soldTo
+                    revente.attribution.save()
 
         # On annule la revente après le tirage au sort (par exemple si
         # la personne qui a gagné le tirage ne se manifeste pas). La place est
@@ -420,9 +420,9 @@ def revente_manage(request, tirage_id):
         elif 'reinit' in request.POST:
             soldform = SoldForm(participant, request.POST, prefix='sold')
             if soldform.is_valid():
-                attributions = soldform.cleaned_data['attributions']
-                for attribution in attributions:
-                    if attribution.spectacle.date > timezone.now():
+                reventes = soldform.cleaned_data['reventes']
+                for revente in reventes:
+                    if revente.attribution.spectacle.date > timezone.now():
                         # On antidate pour envoyer le mail plus vite
                         new_date = (timezone.now()
                                     - SpectacleRevente.remorse_time)

From 9a8773978c52defaf98dd7fd58babd4961273dd5 Mon Sep 17 00:00:00 2001
From: Ludovic Stephan <lstephan@clipper.ens.fr>
Date: Tue, 19 Dec 2017 12:50:20 +0100
Subject: [PATCH 059/101] Use new method in admin

---
 bda/admin.py  | 8 +-------
 bda/models.py | 1 +
 2 files changed, 2 insertions(+), 7 deletions(-)

diff --git a/bda/admin.py b/bda/admin.py
index 4f5d821a..2d289b71 100644
--- a/bda/admin.py
+++ b/bda/admin.py
@@ -288,13 +288,7 @@ class SpectacleReventeAdmin(admin.ModelAdmin):
         count = queryset.count()
         for revente in queryset.filter(
                 attribution__spectacle__date__gte=timezone.now()):
-            revente.date = timezone.now() - timedelta(hours=1)
-            revente.soldTo = None
-            revente.notif_sent = False
-            revente.tirage_done = False
-            if revente.confirmed_entry:
-                revente.confirmed_entry.clear()
-            revente.save()
+            revente.reset(new_date=timezone.now() - timedelta(hours=1))
         self.message_user(
             request,
             "%d attribution%s %s été réinitialisée%s avec succès." % (
diff --git a/bda/models.py b/bda/models.py
index c01fe727..722a3ef7 100644
--- a/bda/models.py
+++ b/bda/models.py
@@ -300,6 +300,7 @@ class SpectacleRevente(models.Model):
         self.confirmed_entry.clear()
         self.soldTo = None
         self.notif_sent = False
+        self.notif_time = None
         self.tirage_done = False
         self.shotgun = False
         self.save()

From f58f120e7a14704b3d473a960234770d113f6931 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Aur=C3=A9lien=20Delobelle?= <aurelien.delobelle@gmail.com>
Date: Wed, 10 Jan 2018 17:25:07 +0100
Subject: [PATCH 060/101] py34 compat

(already present in prod)
---
 kfet/open/open.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/kfet/open/open.py b/kfet/open/open.py
index 7fd90c21..82d6217a 100644
--- a/kfet/open/open.py
+++ b/kfet/open/open.py
@@ -85,7 +85,7 @@ class OpenKfet(CachedMixin, object):
             'admin_status': self.admin_status(status),
             'force_close': self.force_close,
         }
-        return base, {**base, **restrict}
+        return base, dict(base, **restrict)
 
     def export(self, user):
         """Export internal state for a given user.

From 91119f68bc5deef627baa47ec7fb80e56c0bb514 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Martin=20P=C3=A9pin?= <martin.pepin@ens.fr>
Date: Wed, 10 Jan 2018 17:34:41 +0100
Subject: [PATCH 061/101] =?UTF-8?q?Ne=20pas=20oublier=20avant=20de=20passe?=
 =?UTF-8?q?r=20en=20prod=E2=80=A6?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 TODO_PROD.md | 1 +
 1 file changed, 1 insertion(+)
 create mode 100644 TODO_PROD.md

diff --git a/TODO_PROD.md b/TODO_PROD.md
new file mode 100644
index 00000000..1a7d0736
--- /dev/null
+++ b/TODO_PROD.md
@@ -0,0 +1 @@
+- Changer les urls dans les mails "bda-revente" et "bda-shotgun"

From 52fd49616dab6515ab6e113ccb405878c59f18dd Mon Sep 17 00:00:00 2001
From: Ludovic Stephan <lstephan@clipper.ens.fr>
Date: Wed, 10 Jan 2018 20:14:27 +0100
Subject: [PATCH 062/101] Fix model test

---
 bda/tests/test_models.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/bda/tests/test_models.py b/bda/tests/test_models.py
index d9242b3f..95ce8646 100644
--- a/bda/tests/test_models.py
+++ b/bda/tests/test_models.py
@@ -67,7 +67,7 @@ class SpectacleReventeTests(TestCase):
         revente = self.rev
 
         wanted_by = [self.p1, self.p2, self.p3]
-        revente.answered_mail = wanted_by
+        revente.confirmed_entry = wanted_by
 
         with mock.patch('bda.models.random.choice') as mc:
             # Set winner to self.p1.

From 6059ca067b96f3eb2071f022a39ef2d7d1cc5cf8 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Aur=C3=A9lien=20Delobelle?= <aurelien.delobelle@gmail.com>
Date: Mon, 15 Jan 2018 05:26:33 +0100
Subject: [PATCH 063/101] Speed up tests

~20% less using MD5 and force_login in kfet testcase.
~77% less by disabling the debug tollbar.
---
 cof/settings/common.py  |  3 +++
 cof/settings/dev.py     | 22 ++++++++++++++--------
 kfet/tests/testcases.py |  8 +-------
 3 files changed, 18 insertions(+), 15 deletions(-)

diff --git a/cof/settings/common.py b/cof/settings/common.py
index 48242fc3..708e90a0 100644
--- a/cof/settings/common.py
+++ b/cof/settings/common.py
@@ -7,6 +7,7 @@ the local development server should be here.
 """
 
 import os
+import sys
 
 try:
     from . import secret
@@ -53,6 +54,8 @@ BASE_DIR = os.path.dirname(
     os.path.dirname(os.path.dirname(os.path.abspath(__file__)))
 )
 
+TESTING = sys.argv[1] == 'test'
+
 
 # Application definition
 INSTALLED_APPS = [
diff --git a/cof/settings/dev.py b/cof/settings/dev.py
index 6e1f6b11..114f37da 100644
--- a/cof/settings/dev.py
+++ b/cof/settings/dev.py
@@ -4,13 +4,18 @@ The settings that are not listed here are imported from .common
 """
 
 from .common import *  # NOQA
-from .common import INSTALLED_APPS, MIDDLEWARE
+from .common import INSTALLED_APPS, MIDDLEWARE, TESTING
 
 
 EMAIL_BACKEND = 'django.core.mail.backends.console.EmailBackend'
 
 DEBUG = True
 
+if TESTING:
+    PASSWORD_HASHERS = [
+        'django.contrib.auth.hashers.MD5PasswordHasher',
+    ]
+
 
 # ---
 # Apache static/media config
@@ -36,12 +41,13 @@ def show_toolbar(request):
     """
     return DEBUG
 
-INSTALLED_APPS += ["debug_toolbar", "debug_panel"]
+if not TESTING:
+    INSTALLED_APPS += ["debug_toolbar", "debug_panel"]
 
-MIDDLEWARE = [
-    "debug_panel.middleware.DebugPanelMiddleware"
-] + MIDDLEWARE
+    MIDDLEWARE = [
+        "debug_panel.middleware.DebugPanelMiddleware"
+    ] + MIDDLEWARE
 
-DEBUG_TOOLBAR_CONFIG = {
-    'SHOW_TOOLBAR_CALLBACK': show_toolbar,
-}
+    DEBUG_TOOLBAR_CONFIG = {
+        'SHOW_TOOLBAR_CALLBACK': show_toolbar,
+    }
diff --git a/kfet/tests/testcases.py b/kfet/tests/testcases.py
index 3ea428c3..aa2fb1b6 100644
--- a/kfet/tests/testcases.py
+++ b/kfet/tests/testcases.py
@@ -245,13 +245,7 @@ class ViewTestCaseMixin(TestCaseMixin):
             self.register_user(label, user)
 
         if self.auth_user:
-            # The wrapper is a sanity check.
-            self.assertTrue(
-                self.client.login(
-                    username=self.auth_user,
-                    password=self.auth_user,
-                )
-            )
+            self.client.force_login(self.users[self.auth_user])
 
     def tearDown(self):
         del self.users_base

From e23e1bdba6c6ddbc4e80e23b2099c7e6e99788f5 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Aur=C3=A9lien=20Delobelle?= <aurelien.delobelle@gmail.com>
Date: Mon, 15 Jan 2018 16:52:46 +0100
Subject: [PATCH 064/101] kfet -- Add test to check the choices of checkouts in
 K-Psul

Particularly, it adds a regression test for #184.
---
 kfet/tests/test_forms.py | 48 ++++++++++++++++++++++++++++++++++++++++
 1 file changed, 48 insertions(+)
 create mode 100644 kfet/tests/test_forms.py

diff --git a/kfet/tests/test_forms.py b/kfet/tests/test_forms.py
new file mode 100644
index 00000000..e946d39d
--- /dev/null
+++ b/kfet/tests/test_forms.py
@@ -0,0 +1,48 @@
+import datetime
+from unittest import mock
+
+from django.test import TestCase
+from django.utils import timezone
+
+from kfet.forms import KPsulCheckoutForm
+from kfet.models import Checkout
+
+from .utils import create_user
+
+
+class KPsulCheckoutFormTests(TestCase):
+
+    def setUp(self):
+        self.now = timezone.now()
+
+        user = create_user()
+
+        self.c1 = Checkout.objects.create(
+            name='C1', balance=10,
+            created_by=user.profile.account_kfet,
+            valid_from=self.now,
+            valid_to=self.now + datetime.timedelta(days=1),
+        )
+
+        self.form = KPsulCheckoutForm()
+
+    def test_checkout(self):
+        checkout_f = self.form.fields['checkout']
+        self.assertListEqual(list(checkout_f.choices), [
+            ('', '---------'),
+            (self.c1.pk, 'C1'),
+        ])
+
+    @mock.patch('django.utils.timezone.now')
+    def test_checkout_valid(self, mock_now):
+        """
+        Checkout are filtered using the current datetime.
+        Regression test for #184.
+        """
+        self.now += datetime.timedelta(days=2)
+        mock_now.return_value = self.now
+
+        form = KPsulCheckoutForm()
+
+        checkout_f = form.fields['checkout']
+        self.assertListEqual(list(checkout_f.choices), [('', '---------')])

From 525bb4d16dc7057fa746d5e66c9c8ebb336466b5 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Aur=C3=A9lien=20Delobelle?= <aurelien.delobelle@gmail.com>
Date: Mon, 15 Jan 2018 16:56:38 +0100
Subject: [PATCH 065/101] kfet -- Fix available checkouts in K-Psul

The checkout validity is checked using the current datetime (when
requesting the kpsul page).
---
 kfet/forms.py  | 16 ++++++++--------
 kfet/models.py |  9 +++++++++
 2 files changed, 17 insertions(+), 8 deletions(-)

diff --git a/kfet/forms.py b/kfet/forms.py
index 963e4254..26774b1c 100644
--- a/kfet/forms.py
+++ b/kfet/forms.py
@@ -296,17 +296,17 @@ class KPsulAccountForm(forms.ModelForm):
 
 class KPsulCheckoutForm(forms.Form):
     checkout = forms.ModelChoiceField(
-        queryset=(
-            Checkout.objects
-            .filter(
-                is_protected=False,
-                valid_from__lte=timezone.now(),
-                valid_to__gte=timezone.now(),
-            )
-        ),
+        queryset=None,
         widget=forms.Select(attrs={'id': 'id_checkout_select'}),
     )
 
+    def __init__(self, *args, **kwargs):
+        super().__init__(*args, **kwargs)
+
+        # Create the queryset on form instanciation to use the current time.
+        self.fields['checkout'].queryset = (
+            Checkout.objects.is_valid().filter(is_protected=False))
+
 
 class KPsulOperationForm(forms.ModelForm):
     article = forms.ModelChoiceField(
diff --git a/kfet/models.py b/kfet/models.py
index deee76eb..c9de48bc 100644
--- a/kfet/models.py
+++ b/kfet/models.py
@@ -341,6 +341,13 @@ class AccountNegative(models.Model):
         return self.start + kfet_config.overdraft_duration
 
 
+class CheckoutQuerySet(models.QuerySet):
+
+    def is_valid(self):
+        now = timezone.now()
+        return self.filter(valid_from__lte=now, valid_to__gte=now)
+
+
 class Checkout(models.Model):
     created_by = models.ForeignKey(
         Account, on_delete = models.PROTECT,
@@ -353,6 +360,8 @@ class Checkout(models.Model):
         default = 0)
     is_protected = models.BooleanField(default = False)
 
+    objects = CheckoutQuerySet.as_manager()
+
     def get_absolute_url(self):
         return reverse('kfet.checkout.read', kwargs={'pk': self.pk})
 

From 478f56d94b6db8a185bbd0dd821147c06a2bfafc Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Aur=C3=A9lien=20Delobelle?= <aurelien.delobelle@gmail.com>
Date: Tue, 16 Jan 2018 15:59:17 +0100
Subject: [PATCH 066/101] kfet -- Create initial statement on checkout save

- Why? Because it should be the actual behavior.
- To allow using arithmetic operations with values of DecimalField when
object are not retrieved from DB, some strings are replaced by Decimal
or int.
If you wonder why it's not automatically done, see:
https://code.djangoproject.com/ticket/27825
---
 kfet/models.py            | 16 ++++++++++++++++
 kfet/tests/test_models.py | 37 ++++++++++++++++++++++++++++++++++++-
 kfet/tests/test_views.py  | 19 ++++++++++++-------
 kfet/views.py             | 10 +---------
 4 files changed, 65 insertions(+), 17 deletions(-)

diff --git a/kfet/models.py b/kfet/models.py
index deee76eb..3f38cc44 100644
--- a/kfet/models.py
+++ b/kfet/models.py
@@ -362,6 +362,22 @@ class Checkout(models.Model):
     def __str__(self):
         return self.name
 
+    def save(self, *args, **kwargs):
+        created = self.pk is None
+
+        ret = super().save(*args, **kwargs)
+
+        if created:
+            self.statements.create(
+                amount_taken=0,
+                balance_old=self.balance,
+                balance_new=self.balance,
+                by=self.created_by,
+            )
+
+        return ret
+
+
 class CheckoutTransfer(models.Model):
     from_checkout = models.ForeignKey(
         Checkout, on_delete = models.PROTECT,
diff --git a/kfet/tests/test_models.py b/kfet/tests/test_models.py
index ea132acd..727cac4e 100644
--- a/kfet/tests/test_models.py
+++ b/kfet/tests/test_models.py
@@ -1,7 +1,12 @@
+import datetime
+
 from django.contrib.auth import get_user_model
 from django.test import TestCase
+from django.utils import timezone
 
-from kfet.models import Account
+from kfet.models import Account, Checkout
+
+from .utils import create_user
 
 User = get_user_model()
 
@@ -23,3 +28,33 @@ class AccountTests(TestCase):
 
         with self.assertRaises(Account.DoesNotExist):
             Account.objects.get_by_password('bernard')
+
+
+class CheckoutTests(TestCase):
+
+    def setUp(self):
+        self.now = timezone.now()
+
+        self.u = create_user()
+        self.u_acc = self.u.profile.account_kfet
+
+        self.c = Checkout(
+            created_by=self.u_acc,
+            valid_from=self.now,
+            valid_to=self.now + datetime.timedelta(days=1),
+        )
+
+    def test_initial_statement(self):
+        """A statement is added with initial balance on creation."""
+        self.c.balance = 10
+        self.c.save()
+
+        st = self.c.statements.get()
+        self.assertEqual(st.balance_new, 10)
+        self.assertEqual(st.amount_taken, 0)
+        self.assertEqual(st.amount_error, 0)
+
+        # Saving again doesn't create a new statement.
+        self.c.save()
+
+        self.assertEqual(self.c.statements.count(), 1)
diff --git a/kfet/tests/test_views.py b/kfet/tests/test_views.py
index 41ed8b5c..40f895a1 100644
--- a/kfet/tests/test_views.py
+++ b/kfet/tests/test_views.py
@@ -746,12 +746,16 @@ class CheckoutReadViewTests(ViewTestCaseMixin, TestCase):
 
     def setUp(self):
         super().setUp()
-        self.checkout = Checkout.objects.create(
-            name='Checkout',
-            created_by=self.accounts['team'],
-            valid_from=self.now,
-            valid_to=self.now + timedelta(days=5),
-        )
+
+        with mock.patch('django.utils.timezone.now') as mock_now:
+            mock_now.return_value = self.now
+
+            self.checkout = Checkout.objects.create(
+                name='Checkout', balance=Decimal('10'),
+                created_by=self.accounts['team'],
+                valid_from=self.now,
+                valid_to=self.now + timedelta(days=1),
+            )
 
     def test_ok(self):
         r = self.client.get(self.url)
@@ -794,7 +798,7 @@ class CheckoutUpdateViewTests(ViewTestCaseMixin, TestCase):
             name='Checkout',
             valid_from=self.now,
             valid_to=self.now + timedelta(days=5),
-            balance='3.14',
+            balance=Decimal('3.14'),
             is_protected=False,
             created_by=self.accounts['team'],
         )
@@ -864,6 +868,7 @@ class CheckoutStatementListViewTests(ViewTestCaseMixin, TestCase):
         self.assertQuerysetEqual(
             r.context['checkoutstatements'],
             map(repr, expected_statements),
+            ordered=False,
         )
 
 
diff --git a/kfet/views.py b/kfet/views.py
index 1fe9ac22..2b69684d 100644
--- a/kfet/views.py
+++ b/kfet/views.py
@@ -528,15 +528,7 @@ class CheckoutCreate(SuccessMessageMixin, CreateView):
 
         # Creating
         form.instance.created_by = self.request.user.profile.account_kfet
-        checkout = form.save()
-
-        # Création d'un relevé avec balance initiale
-        CheckoutStatement.objects.create(
-                checkout = checkout,
-                by = self.request.user.profile.account_kfet,
-                balance_old = checkout.balance,
-                balance_new = checkout.balance,
-                amount_taken = 0)
+        form.save()
 
         return super(CheckoutCreate, self).form_valid(form)
 

From 776ff28141dc96e2ab13e8b35bb71f42637dae3f Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Aur=C3=A9lien=20Delobelle?= <aurelien.delobelle@gmail.com>
Date: Fri, 19 Jan 2018 17:48:00 +0100
Subject: [PATCH 067/101] cof -- Add helpers to test cof views.

---
 gestioncof/tests/__init__.py                  |   0
 gestioncof/{tests.py => tests/test_legacy.py} |   0
 gestioncof/tests/testcases.py                 |  24 ++
 gestioncof/tests/utils.py                     |  51 +++
 shared/tests/testcases.py                     | 294 ++++++++++++++++++
 5 files changed, 369 insertions(+)
 create mode 100644 gestioncof/tests/__init__.py
 rename gestioncof/{tests.py => tests/test_legacy.py} (100%)
 create mode 100644 gestioncof/tests/testcases.py
 create mode 100644 gestioncof/tests/utils.py
 create mode 100644 shared/tests/testcases.py

diff --git a/gestioncof/tests/__init__.py b/gestioncof/tests/__init__.py
new file mode 100644
index 00000000..e69de29b
diff --git a/gestioncof/tests.py b/gestioncof/tests/test_legacy.py
similarity index 100%
rename from gestioncof/tests.py
rename to gestioncof/tests/test_legacy.py
diff --git a/gestioncof/tests/testcases.py b/gestioncof/tests/testcases.py
new file mode 100644
index 00000000..b53f2866
--- /dev/null
+++ b/gestioncof/tests/testcases.py
@@ -0,0 +1,24 @@
+from shared.tests.testcases import ViewTestCaseMixin as BaseViewTestCaseMixin
+
+from .utils import create_user, create_member, create_staff
+
+
+class ViewTestCaseMixin(BaseViewTestCaseMixin):
+    """
+    TestCase extension to ease testing of cof views.
+
+    Most information can be found in the base parent class doc.
+    This class performs some changes to users management, detailed below.
+
+    During setup, three users are created:
+    - 'user': a basic user without any permission,
+    - 'member': (profile.is_cof is True),
+    - 'staff': (profile.is_cof is True) && (profile.is_buro is True).
+    """
+
+    def get_users_base(self):
+        return {
+            'user': create_user('user'),
+            'member': create_member('member'),
+            'staff': create_staff('staff'),
+        }
diff --git a/gestioncof/tests/utils.py b/gestioncof/tests/utils.py
new file mode 100644
index 00000000..8d55680a
--- /dev/null
+++ b/gestioncof/tests/utils.py
@@ -0,0 +1,51 @@
+from django.contrib.auth import get_user_model
+
+User = get_user_model()
+
+
+def _create_user(username, is_cof=False, is_staff=False, attrs=None):
+    if attrs is None:
+        attrs = {}
+
+    password = attrs.pop('password', username)
+
+    user_keys = ['first_name', 'last_name', 'email', 'is_staff']
+    user_attrs = {k: v for k, v in attrs.items() if k in user_keys}
+
+    profile_keys = [
+        'is_cof', 'login_clipper', 'phone', 'occupation', 'departement',
+        'type_cotiz', 'mailing_cof', 'mailing_bda', 'mailing_bda_revente',
+        'comments', 'is_buro', 'petit_cours_accept',
+        'petit_cours_remarques',
+    ]
+    profile_attrs = {k: v for k, v in attrs.items() if k in profile_keys}
+
+    if is_cof:
+        profile_attrs['is_cof'] = True
+
+    if is_staff:
+        # At the moment, admin is accessible by COF staff.
+        user_attrs['is_staff'] = True
+        profile_attrs['is_buro'] = True
+
+    user = User(username=username, **user_attrs)
+    user.set_password(password)
+    user.save()
+
+    for k, v in profile_attrs.items():
+        setattr(user.profile, k, v)
+    user.profile.save()
+
+    return user
+
+
+def create_user(username, attrs=None):
+    return _create_user(username, attrs=attrs)
+
+
+def create_member(username, attrs=None):
+    return _create_user(username, is_cof=True, attrs=attrs)
+
+
+def create_staff(username, attrs=None):
+    return _create_user(username, is_cof=True, is_staff=True, attrs=attrs)
diff --git a/shared/tests/testcases.py b/shared/tests/testcases.py
new file mode 100644
index 00000000..15792383
--- /dev/null
+++ b/shared/tests/testcases.py
@@ -0,0 +1,294 @@
+from unittest import mock
+from urllib.parse import parse_qs, urlparse
+
+from django.contrib.auth import get_user_model
+from django.core.urlresolvers import reverse
+from django.http import QueryDict
+from django.test import Client
+from django.utils import timezone
+from django.utils.functional import cached_property
+
+User = get_user_model()
+
+
+class TestCaseMixin:
+
+    def assertForbidden(self, response):
+        """
+        Test that the response (retrieved with a Client) is a denial of access.
+
+        The response should verify one of the following:
+        - its HTTP response code is 403,
+        - it redirects to the login page with a GET parameter named 'next'
+        whose value is the url of the requested page.
+
+        """
+        request = response.wsgi_request
+
+        try:
+            try:
+                # Is this an HTTP Forbidden response ?
+                self.assertEqual(response.status_code, 403)
+            except AssertionError:
+                # A redirection to the login view is fine too.
+
+                # Let's build the login url with the 'next' param on current
+                # page.
+                full_path = request.get_full_path()
+
+                querystring = QueryDict(mutable=True)
+                querystring['next'] = full_path
+
+                login_url = '{}?{}'.format(
+                    reverse('cof-login'), querystring.urlencode(safe='/'))
+
+                # We don't focus on what the login view does.
+                # So don't fetch the redirect.
+                self.assertRedirects(
+                    response, login_url,
+                    fetch_redirect_response=False,
+                )
+        except AssertionError:
+            raise AssertionError(
+                "%(http_method)s request at %(path)s should be forbidden for "
+                "%(username)s user.\n"
+                "Response isn't 403, nor a redirect to login view. Instead, "
+                "response code is %(code)d." % {
+                    'http_method': request.method,
+                    'path': request.get_full_path(),
+                    'username': (
+                        "'{}'".format(request.user)
+                        if request.user.is_authenticated()
+                        else 'anonymous'
+                    ),
+                    'code': response.status_code,
+                }
+            )
+
+    def assertUrlsEqual(self, actual, expected):
+        """
+        Test that the url 'actual' is as 'expected'.
+
+        Arguments:
+            actual (str): Url to verify.
+            expected: Two forms are accepted.
+                * (str): Expected url. Strings equality is checked.
+                * (dict): Its keys must be attributes of 'urlparse(actual)'.
+                    Equality is checked for each present key, except for
+                    'query' which must be a dict of the expected query string
+                    parameters.
+
+        """
+        if type(expected) == dict:
+            parsed = urlparse(actual)
+            for part, expected_part in expected.items():
+                if part == 'query':
+                    self.assertDictEqual(
+                        parse_qs(parsed.query),
+                        expected.get('query', {}),
+                    )
+                else:
+                    self.assertEqual(getattr(parsed, part), expected_part)
+        else:
+            self.assertEqual(actual, expected)
+
+
+class ViewTestCaseMixin(TestCaseMixin):
+    """
+    TestCase extension to ease tests of kfet views.
+
+
+    Urls concerns
+    -------------
+
+    # Basic usage
+
+    Attributes:
+        url_name (str): Name of view under test, as given to 'reverse'
+            function.
+        url_args (list, optional): Will be given to 'reverse' call.
+        url_kwargs (dict, optional): Same.
+        url_expcted (str): What 'reverse' should return given previous
+            attributes.
+
+    View url can then be accessed at the 'url' attribute.
+
+    # Advanced usage
+
+    If multiple combinations of url name, args, kwargs can be used for a view,
+    it is possible to define 'urls_conf' attribute. It must be a list whose
+    each item is a dict defining arguments for 'reverse' call ('name', 'args',
+    'kwargs' keys) and its expected result ('expected' key).
+
+    The reversed urls can be accessed at the 't_urls' attribute.
+
+
+    Users concerns
+    --------------
+
+    During setup, the following users are created:
+    - 'user': a basic user without any permission,
+    - 'root': a superuser, account trigramme: 200.
+    Their password is their username.
+
+    One can create additionnal users with 'get_users_extra' method, or prevent
+    these users to be created with 'get_users_base' method. See these two
+    methods for further informations.
+
+    By using 'register_user' method, these users can then be accessed at
+    'users' attribute by their label.
+
+    A user label can be given to 'auth_user' attribute. The related user is
+    then authenticated on self.client during test setup. Its value defaults to
+    'None', meaning no user is authenticated.
+
+
+    Automated tests
+    ---------------
+
+    # Url reverse
+
+    Based on url-related attributes/properties, the test 'test_urls' checks
+    that expected url is returned by 'reverse' (once with basic url usage and
+    each for advanced usage).
+
+    # Forbidden responses
+
+    The 'test_forbidden' test verifies that each user, from labels of
+    'auth_forbidden' attribute, can't access the url(s), i.e. response should
+    be a 403, or a redirect to login view.
+
+    Tested HTTP requests are given by 'http_methods' attribute. Additional data
+    can be given by defining an attribute '<method(lowercase)>_data'.
+
+    """
+    url_name = None
+    url_expected = None
+
+    http_methods = ['GET']
+
+    auth_user = None
+    auth_forbidden = []
+
+    def setUp(self):
+        """
+        Warning: Do not forget to call super().setUp() in subclasses.
+        """
+        # Signals handlers on login/logout send messages.
+        # Due to the way the Django' test Client performs login, this raise an
+        # error. As workaround, we mock the Django' messages module.
+        patcher_messages = mock.patch('gestioncof.signals.messages')
+        patcher_messages.start()
+        self.addCleanup(patcher_messages.stop)
+
+        # A test can mock 'django.utils.timezone.now' and give this as return
+        # value. E.g. it is useful if the test checks values of 'auto_now' or
+        # 'auto_now_add' fields.
+        self.now = timezone.now()
+
+        # Register of User instances.
+        self.users = {}
+
+        for label, user in dict(self.users_base, **self.users_extra).items():
+            self.register_user(label, user)
+
+        if self.auth_user:
+            # The wrapper is a sanity check.
+            self.assertTrue(
+                self.client.login(
+                    username=self.auth_user,
+                    password=self.auth_user,
+                )
+            )
+
+    def tearDown(self):
+        del self.users_base
+        del self.users_extra
+
+    def get_users_base(self):
+        """
+        Dict of <label: user instance>.
+
+        Note: Don't access yourself this property. Use 'users_base' attribute
+        which cache the returned value from here.
+        It allows to give functions calls, which creates users instances, as
+        values here.
+
+        """
+        return {
+            'user': User.objects.create_user('user', '', 'user'),
+            'root': User.objects.create_superuser('root', '', 'root'),
+        }
+
+    @cached_property
+    def users_base(self):
+        return self.get_users_base()
+
+    def get_users_extra(self):
+        """
+        Dict of <label: user instance>.
+
+        Note: Don't access yourself this property. Use 'users_base' attribute
+        which cache the returned value from here.
+        It allows to give functions calls, which create users instances, as
+        values here.
+
+        """
+        return {}
+
+    @cached_property
+    def users_extra(self):
+        return self.get_users_extra()
+
+    def register_user(self, label, user):
+        self.users[label] = user
+
+    def get_user(self, label):
+        if self.auth_user is not None:
+            return self.auth_user
+        return self.auth_user_mapping.get(label)
+
+    @property
+    def urls_conf(self):
+        return [{
+            'name': self.url_name,
+            'args': getattr(self, 'url_args', []),
+            'kwargs': getattr(self, 'url_kwargs', {}),
+            'expected': self.url_expected,
+        }]
+
+    @property
+    def t_urls(self):
+        return [
+            reverse(
+                url_conf['name'],
+                args=url_conf.get('args', []),
+                kwargs=url_conf.get('kwargs', {}),
+            )
+            for url_conf in self.urls_conf]
+
+    @property
+    def url(self):
+        return self.t_urls[0]
+
+    def test_urls(self):
+        for url, conf in zip(self.t_urls, self.urls_conf):
+            self.assertEqual(url, conf['expected'])
+
+    def test_forbidden(self):
+        for method in self.http_methods:
+            for user in self.auth_forbidden:
+                for url in self.t_urls:
+                    self.check_forbidden(method, url, user)
+
+    def check_forbidden(self, method, url, user=None):
+        method = method.lower()
+        client = Client()
+        if user is not None:
+            client.login(username=user, password=user)
+
+        send_request = getattr(client, method)
+        data = getattr(self, '{}_data'.format(method), {})
+
+        r = send_request(url, data)
+        self.assertForbidden(r)

From 57de31d59a82906b935237f533844397efa5e4e3 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Aur=C3=A9lien=20Delobelle?= <aurelien.delobelle@gmail.com>
Date: Fri, 19 Jan 2018 17:57:43 +0100
Subject: [PATCH 068/101] cof -- Add tests for survey views

---
 gestioncof/tests/test_views.py | 178 +++++++++++++++++++++++++++++++++
 1 file changed, 178 insertions(+)
 create mode 100644 gestioncof/tests/test_views.py

diff --git a/gestioncof/tests/test_views.py b/gestioncof/tests/test_views.py
new file mode 100644
index 00000000..b8860811
--- /dev/null
+++ b/gestioncof/tests/test_views.py
@@ -0,0 +1,178 @@
+from django.contrib import messages
+from django.contrib.messages import get_messages
+from django.contrib.messages.storage.base import Message
+from django.test import TestCase
+
+from gestioncof.models import Survey, SurveyAnswer
+from gestioncof.tests.testcases import ViewTestCaseMixin
+
+
+class SurveyViewTests(ViewTestCaseMixin, TestCase):
+    url_name = 'survey.details'
+
+    http_methods = ['GET', 'POST']
+
+    auth_user = 'user'
+    auth_forbidden = [None]
+
+    post_expected_message = Message(messages.SUCCESS, (
+        "Votre réponse a bien été enregistrée ! Vous pouvez cependant la "
+        "modifier jusqu'à la fin du sondage."
+    ))
+
+    @property
+    def url_kwargs(self):
+        return {'survey_id': self.s.pk}
+
+    @property
+    def url_expected(self):
+        return '/survey/{}'.format(self.s.pk)
+
+    def setUp(self):
+        super().setUp()
+
+        self.s = Survey.objects.create(title='Title')
+
+        self.q1 = self.s.questions.create(question='Question 1 ?')
+        self.q2 = self.s.questions.create(
+            question='Question 2 ?',
+            multi_answers=True,
+        )
+
+        self.qa1 = self.q1.answers.create(answer='Q1 - Answer 1')
+        self.qa2 = self.q1.answers.create(answer='Q1 - Answer 2')
+        self.qa3 = self.q2.answers.create(answer='Q2 - Answer 1')
+        self.qa4 = self.q2.answers.create(answer='Q2 - Answer 2')
+
+    def test_get(self):
+        r = self.client.get(self.url)
+        self.assertEqual(r.status_code, 200)
+
+    def test_post_new(self):
+        r = self.client.post(self.url, {
+            'question_{}'.format(self.q1.pk): [str(self.qa1.pk)],
+            'question_{}'.format(self.q2.pk): [
+                str(self.qa3.pk), str(self.qa4.pk),
+            ],
+        })
+
+        self.assertEqual(r.status_code, 200)
+        self.assertIn(self.post_expected_message, get_messages(r.wsgi_request))
+
+        a = self.s.surveyanswer_set.get(user=self.users['user'])
+        self.assertQuerysetEqual(
+            a.answers.all(), map(repr, [self.qa1, self.qa3, self.qa4]),
+            ordered=False,
+        )
+
+    def test_post_edit(self):
+        a = self.s.surveyanswer_set.create(user=self.users['user'])
+        a.answers.add(self.qa1, self.qa1, self.qa4)
+
+        r = self.client.post(self.url, {
+            'question_{}'.format(self.q1.pk): [],
+            'question_{}'.format(self.q2.pk): [str(self.qa3.pk)],
+        })
+
+        self.assertEqual(r.status_code, 200)
+        self.assertIn(self.post_expected_message, get_messages(r.wsgi_request))
+
+        a.refresh_from_db()
+        self.assertQuerysetEqual(
+            a.answers.all(), map(repr, [self.qa3]),
+            ordered=False,
+        )
+
+    def test_post_delete(self):
+        a = self.s.surveyanswer_set.create(user=self.users['user'])
+        a.answers.add(self.qa1, self.qa4)
+
+        r = self.client.post(self.url, {'delete': '1'})
+
+        self.assertEqual(r.status_code, 200)
+        expected_message = Message(
+            messages.SUCCESS, "Votre réponse a bien été supprimée")
+        self.assertIn(expected_message, get_messages(r.wsgi_request))
+
+        with self.assertRaises(SurveyAnswer.DoesNotExist):
+            a.refresh_from_db()
+
+    def test_forbidden_closed(self):
+        self.s.survey_open = False
+        self.s.save()
+
+        r = self.client.get(self.url)
+
+        self.assertNotEqual(r.status_code, 200)
+
+    def test_forbidden_old(self):
+        self.s.old = True
+        self.s.save()
+
+        r = self.client.get(self.url)
+
+        self.assertNotEqual(r.status_code, 200)
+
+
+class SurveyStatusViewTests(ViewTestCaseMixin, TestCase):
+    url_name = 'survey.details.status'
+
+    http_methods = ['GET', 'POST']
+
+    auth_user = 'staff'
+    auth_forbidden = [None, 'user', 'member']
+
+    @property
+    def url_kwargs(self):
+        return {'survey_id': self.s.pk}
+
+    @property
+    def url_expected(self):
+        return '/survey/{}/status'.format(self.s.pk)
+
+    def setUp(self):
+        super().setUp()
+
+        self.s = Survey.objects.create(title='Title')
+
+        self.q1 = self.s.questions.create(question='Question 1 ?')
+        self.q2 = self.s.questions.create(
+            question='Question 2 ?',
+            multi_answers=True,
+        )
+
+        self.qa1 = self.q1.answers.create(answer='Q1 - Answer 1')
+        self.qa2 = self.q1.answers.create(answer='Q1 - Answer 2')
+        self.qa3 = self.q2.answers.create(answer='Q2 - Answer 1')
+        self.qa4 = self.q2.answers.create(answer='Q2 - Answer 2')
+
+        self.a1 = self.s.surveyanswer_set.create(user=self.users['user'])
+        self.a1.answers.add(self.qa1)
+        self.a2 = self.s.surveyanswer_set.create(user=self.users['member'])
+
+    def test_get(self):
+        r = self.client.get(self.url)
+        self.assertEqual(r.status_code, 200)
+
+    def _get_qa_filter_name(self, qa):
+        return 'question_{}_answer_{}'.format(qa.survey_question.pk, qa.pk)
+
+    def _test_filters(self, filters, expected):
+        r = self.client.post(self.url, {
+            self._get_qa_filter_name(qa): v for qa, v in filters
+        })
+
+        self.assertEqual(r.status_code, 200)
+        self.assertQuerysetEqual(
+            r.context['user_answers'], map(repr, expected),
+            ordered=False,
+        )
+
+    def test_filter_none(self):
+        self._test_filters([(self.qa1, 'none')], [self.a1, self.a2])
+
+    def test_filter_yes(self):
+        self._test_filters([(self.qa1, 'yes')], [self.a1])
+
+    def test_filter_no(self):
+        self._test_filters([(self.qa1, 'no')], [self.a2])

From 8675948d9e849acc028e79c78f7aed92b68101ac Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Aur=C3=A9lien=20Delobelle?= <aurelien.delobelle@gmail.com>
Date: Fri, 19 Jan 2018 18:01:36 +0100
Subject: [PATCH 069/101] cof -- Fix urls naming in survey templates

---
 gestioncof/templates/gestioncof/survey.html | 2 +-
 gestioncof/templates/survey_status.html     | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/gestioncof/templates/gestioncof/survey.html b/gestioncof/templates/gestioncof/survey.html
index ccf447ef..9d4d67b3 100644
--- a/gestioncof/templates/gestioncof/survey.html
+++ b/gestioncof/templates/gestioncof/survey.html
@@ -8,7 +8,7 @@
         {% if survey.details %}
             <p>{{ survey.details }}</p>
         {% endif %}
-        <form class="form-horizontal" method="post" action="{% url 'gestioncof.views.survey' survey.id %}">
+        <form class="form-horizontal" method="post" action="{% url 'survey.details' survey.id %}">
         {% csrf_token %}
         {{ form | bootstrap}}
 
diff --git a/gestioncof/templates/survey_status.html b/gestioncof/templates/survey_status.html
index 831a07bb..0e630c6e 100644
--- a/gestioncof/templates/survey_status.html
+++ b/gestioncof/templates/survey_status.html
@@ -11,7 +11,7 @@
                 {% endif %}
                 <h3>Filtres</h3>
                 {% include "tristate_js.html" %}
-                <form method="post" action="{% url 'gestioncof.views.survey_status' survey.id %}">
+                <form method="post" action="{% url 'survey.details.status' survey.id %}">
                 {% csrf_token %}
                 {{ form.as_p }}
                 <input style="margin-top:10px;" type="submit" class="btn btn-primary" value="Filtrer" />

From ce734990776fe25f62be96b05ad589027bde0a77 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Aur=C3=A9lien=20Delobelle?= <aurelien.delobelle@gmail.com>
Date: Fri, 19 Jan 2018 18:15:57 +0100
Subject: [PATCH 070/101] Fix use of Widget.build_attrs in TriStateCheckbox

Signature changed in Django 1.11.
---
 gestioncof/widgets.py | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/gestioncof/widgets.py b/gestioncof/widgets.py
index 758fc4ad..cbc9cd93 100644
--- a/gestioncof/widgets.py
+++ b/gestioncof/widgets.py
@@ -20,6 +20,7 @@ class TriStateCheckbox(Widget):
     def render(self, name, value, attrs=None, choices=()):
         if value is None:
             value = 'none'
-        final_attrs = self.build_attrs(attrs, value=value)
+        attrs['value'] = value
+        final_attrs = self.build_attrs(self.attrs, attrs)
         output = ["<span class=\"tristate\"%s></span>" % flatatt(final_attrs)]
         return mark_safe('\n'.join(output))

From f5b280896fcaac00934e2341552ca4f3e21bda05 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Aur=C3=A9lien=20Delobelle?= <aurelien.delobelle@gmail.com>
Date: Fri, 19 Jan 2018 18:36:03 +0100
Subject: [PATCH 071/101] cof -- Add tests for event views

---
 gestioncof/tests/test_views.py | 163 +++++++++++++++++++++++++++++++++
 1 file changed, 163 insertions(+)
 create mode 100644 gestioncof/tests/test_views.py

diff --git a/gestioncof/tests/test_views.py b/gestioncof/tests/test_views.py
new file mode 100644
index 00000000..a3c423d3
--- /dev/null
+++ b/gestioncof/tests/test_views.py
@@ -0,0 +1,163 @@
+from django.contrib import messages
+from django.contrib.messages import get_messages
+from django.contrib.messages.storage.base import Message
+from django.test import TestCase
+
+from gestioncof.models import Event
+from gestioncof.tests.testcases import ViewTestCaseMixin
+
+
+class EventViewTests(ViewTestCaseMixin, TestCase):
+    url_name = 'event.details'
+
+    http_methods = ['GET', 'POST']
+
+    auth_user = 'user'
+    auth_forbidden = [None]
+
+    post_expected_message = Message(messages.SUCCESS, (
+        "Votre inscription a bien été enregistrée ! Vous pouvez cependant la "
+        "modifier jusqu'à la fin des inscriptions."
+    ))
+
+    @property
+    def url_kwargs(self):
+        return {'event_id': self.e.pk}
+
+    @property
+    def url_expected(self):
+        return '/event/{}'.format(self.e.pk)
+
+    def setUp(self):
+        super().setUp()
+
+        self.e = Event.objects.create()
+
+        self.ecf1 = self.e.commentfields.create(name='Comment Field 1')
+        self.ecf2 = self.e.commentfields.create(
+            name='Comment Field 2', fieldtype='char',
+        )
+
+        self.o1 = self.e.options.create(name='Option 1')
+        self.o2 = self.e.options.create(name='Option 2', multi_choices=True)
+
+        self.oc1 = self.o1.choices.create(value='O1 - Choice 1')
+        self.oc2 = self.o1.choices.create(value='O1 - Choice 2')
+        self.oc3 = self.o2.choices.create(value='O2 - Choice 1')
+        self.oc4 = self.o2.choices.create(value='O2 - Choice 2')
+
+    def test_get(self):
+        r = self.client.get(self.url)
+        self.assertEqual(r.status_code, 200)
+
+    def test_post_new(self):
+        r = self.client.post(self.url, {
+            'option_{}'.format(self.o1.pk): [str(self.oc1.pk)],
+            'option_{}'.format(self.o2.pk): [
+                str(self.oc3.pk), str(self.oc4.pk),
+            ],
+        })
+
+        self.assertEqual(r.status_code, 200)
+        self.assertIn(self.post_expected_message, get_messages(r.wsgi_request))
+
+        er = self.e.eventregistration_set.get(user=self.users['user'])
+        self.assertQuerysetEqual(
+            er.options.all(), map(repr, [self.oc1, self.oc3, self.oc4]),
+            ordered=False,
+        )
+        # TODO: Make the view care about comments.
+        # self.assertQuerysetEqual(
+        #     er.comments.all(), map(repr, []),
+        #     ordered=False,
+        # )
+
+    def test_post_edit(self):
+        er = self.e.eventregistration_set.create(user=self.users['user'])
+        er.options.add(self.oc1, self.oc3, self.oc4)
+        er.comments.create(
+            commentfield=self.ecf1, content='Comment 1',
+        )
+
+        r = self.client.post(self.url, {
+            'option_{}'.format(self.o1.pk): [],
+            'option_{}'.format(self.o2.pk): [str(self.oc3.pk)],
+        })
+
+        self.assertEqual(r.status_code, 200)
+        self.assertIn(self.post_expected_message, get_messages(r.wsgi_request))
+
+        er.refresh_from_db()
+        self.assertQuerysetEqual(
+            er.options.all(), map(repr, [self.oc3]),
+            ordered=False,
+        )
+        # TODO: Make the view care about comments.
+        # self.assertQuerysetEqual(
+        #     er.comments.all(), map(repr, []),
+        #     ordered=False,
+        # )
+
+
+class EventStatusViewTests(ViewTestCaseMixin, TestCase):
+    url_name = 'event.details.status'
+
+    http_methods = ['GET', 'POST']
+
+    auth_user = 'staff'
+    auth_forbidden = [None, 'user', 'member']
+
+    @property
+    def url_kwargs(self):
+        return {'event_id': self.e.pk}
+
+    @property
+    def url_expected(self):
+        return '/event/{}/status'.format(self.e.pk)
+
+    def setUp(self):
+        super().setUp()
+
+        self.e = Event.objects.create()
+
+        self.cf1 = self.e.commentfields.create(name='Comment Field 1')
+        self.cf2 = self.e.commentfields.create(
+            name='Comment Field 2', fieldtype='char',
+        )
+
+        self.o1 = self.e.options.create(name='Option 1')
+        self.o2 = self.e.options.create(name='Option 2', multi_choices=True)
+
+        self.oc1 = self.o1.choices.create(value='O1 - Choice 1')
+        self.oc2 = self.o1.choices.create(value='O1 - Choice 2')
+        self.oc3 = self.o2.choices.create(value='O2 - Choice 1')
+        self.oc4 = self.o2.choices.create(value='O2 - Choice 2')
+
+        self.er1 = self.e.eventregistration_set.create(user=self.users['user'])
+        self.er1.options.add(self.oc1)
+        self.er2 = self.e.eventregistration_set.create(
+            user=self.users['member'],
+        )
+
+    def _get_oc_filter_name(self, oc):
+        return 'option_{}_choice_{}'.format(oc.event_option.pk, oc.pk)
+
+    def _test_filters(self, filters, expected):
+        r = self.client.post(self.url, {
+            self._get_oc_filter_name(oc): v for oc, v in filters
+        })
+
+        self.assertEqual(r.status_code, 200)
+        self.assertQuerysetEqual(
+            r.context['user_choices'], map(repr, expected),
+            ordered=False,
+        )
+
+    def test_filter_none(self):
+        self._test_filters([(self.oc1, 'none')], [self.er1, self.er2])
+
+    def test_filter_yes(self):
+        self._test_filters([(self.oc1, 'yes')], [self.er1])
+
+    def test_filter_no(self):
+        self._test_filters([(self.oc1, 'no')], [self.er2])

From a6f52cfdc561fa436c474706c3f770805c43954f Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Aur=C3=A9lien=20Delobelle?= <aurelien.delobelle@gmail.com>
Date: Fri, 19 Jan 2018 18:38:34 +0100
Subject: [PATCH 072/101] cof -- Fix urls naming in event template

---
 gestioncof/templates/event_status.html | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/gestioncof/templates/event_status.html b/gestioncof/templates/event_status.html
index 2a09b820..40bda7db 100644
--- a/gestioncof/templates/event_status.html
+++ b/gestioncof/templates/event_status.html
@@ -11,7 +11,7 @@
                 {% endif %}
                 {% include "tristate_js.html" %}
                 <h3>Filtres</h3>
-                <form method="post" action="{% url 'gestioncof.views.event_status' event.id %}">
+                <form method="post" action="{% url 'event.details.status' event.id %}">
                 {% csrf_token %}
                 {{ form.as_p }}
                 <input style="margin-top:10px;" type="submit" class="btn btn-primary" value="Filtrer" />

From dfb9ccb0af1b8700823e929d85806c06c769979a Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Aur=C3=A9lien=20Delobelle?= <aurelien.delobelle@gmail.com>
Date: Fri, 19 Jan 2018 18:15:57 +0100
Subject: [PATCH 073/101] Fix use of Widget.build_attrs in TriStateCheckbox

Signature changed in Django 1.11.
---
 gestioncof/widgets.py | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/gestioncof/widgets.py b/gestioncof/widgets.py
index 758fc4ad..cbc9cd93 100644
--- a/gestioncof/widgets.py
+++ b/gestioncof/widgets.py
@@ -20,6 +20,7 @@ class TriStateCheckbox(Widget):
     def render(self, name, value, attrs=None, choices=()):
         if value is None:
             value = 'none'
-        final_attrs = self.build_attrs(attrs, value=value)
+        attrs['value'] = value
+        final_attrs = self.build_attrs(self.attrs, attrs)
         output = ["<span class=\"tristate\"%s></span>" % flatatt(final_attrs)]
         return mark_safe('\n'.join(output))

From c239f28f171fc899ca9b6824e003e24833bf482f Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Aur=C3=A9lien=20Delobelle?= <aurelien.delobelle@gmail.com>
Date: Sat, 20 Jan 2018 17:02:23 +0100
Subject: [PATCH 074/101] syncmails should be able to be silent

---
 gestioncof/management/commands/syncmails.py | 16 +++++++++-------
 1 file changed, 9 insertions(+), 7 deletions(-)

diff --git a/gestioncof/management/commands/syncmails.py b/gestioncof/management/commands/syncmails.py
index 1d3dddb8..74ad152d 100644
--- a/gestioncof/management/commands/syncmails.py
+++ b/gestioncof/management/commands/syncmails.py
@@ -63,8 +63,9 @@ class Command(BaseCommand):
                 except CustomMail.DoesNotExist:
                     mail = CustomMail.objects.create(**fields)
                     status['synced'] += 1
-                    self.stdout.write(
-                        'SYNCED {:s}'.format(fields['shortname']))
+                    if options['verbosity']:
+                        self.stdout.write(
+                            'SYNCED {:s}'.format(fields['shortname']))
                 assoc['mails'][obj['pk']] = mail
 
             # Variables
@@ -79,8 +80,9 @@ class Command(BaseCommand):
                 except Variable.DoesNotExist:
                     Variable.objects.create(**fields)
 
-        # C'est agréable d'avoir le résultat affiché
-        self.stdout.write(
-            '{synced:d} mails synchronized {unchanged:d} unchanged'
-            .format(**status)
-        )
+        if options['verbosity']:
+            # C'est agréable d'avoir le résultat affiché
+            self.stdout.write(
+                '{synced:d} mails synchronized {unchanged:d} unchanged'
+                .format(**status)
+            )

From 4084444dc3c1fd5f5af2e5714cee2fc163da1180 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Aur=C3=A9lien=20Delobelle?= <aurelien.delobelle@gmail.com>
Date: Sat, 20 Jan 2018 17:29:15 +0100
Subject: [PATCH 075/101] Fix autocomplete in registration views.

django-autocomplete-light v3.x doesn't include anymore the
$('').yourlabsAutocomplete() function, leading to issues in cof
registration and kfet account creation views.

Adding jquery-autocomplete-light fixes these issues.

See:
- (dal) https://github.com/yourlabs/django-autocomplete-light
- (jal) https://github.com/yourlabs/jquery-autocomplete-light
---
 cof/settings/common.py                        |    2 +
 gestioncof/templates/registration.html        |    2 +-
 kfet/templates/kfet/account_create.html       |    2 +-
 .../3.5.0/dist/jquery.autocomplete-light.js   | 1698 +++++++++++++++++
 .../dist/jquery.autocomplete-light.min.js     |    9 +
 5 files changed, 1711 insertions(+), 2 deletions(-)
 create mode 100644 shared/static/vendor/jquery.autocomplete-light/3.5.0/dist/jquery.autocomplete-light.js
 create mode 100644 shared/static/vendor/jquery.autocomplete-light/3.5.0/dist/jquery.autocomplete-light.min.js

diff --git a/cof/settings/common.py b/cof/settings/common.py
index 48242fc3..aec299c1 100644
--- a/cof/settings/common.py
+++ b/cof/settings/common.py
@@ -56,6 +56,8 @@ BASE_DIR = os.path.dirname(
 
 # Application definition
 INSTALLED_APPS = [
+    'shared',
+
     'gestioncof',
 
     # Must be before 'django.contrib.admin'.
diff --git a/gestioncof/templates/registration.html b/gestioncof/templates/registration.html
index 8f05dfb0..99ab3e73 100644
--- a/gestioncof/templates/registration.html
+++ b/gestioncof/templates/registration.html
@@ -4,7 +4,7 @@
 {% block page_size %}col-sm-8{% endblock %}
 
 {% block extra_head %}
-		<script src="{% static "autocomplete_light/autocomplete.js" %}" type="text/javascript"></script>
+    <script src="{% static "vendor/jquery.autocomplete-light/3.5.0/dist/jquery.autocomplete-light.min.js" %}" type="text/javascript"></script>
 {% endblock %}
 
 {% block realcontent %}
diff --git a/kfet/templates/kfet/account_create.html b/kfet/templates/kfet/account_create.html
index 59fc1d56..b09713df 100644
--- a/kfet/templates/kfet/account_create.html
+++ b/kfet/templates/kfet/account_create.html
@@ -5,7 +5,7 @@
 {% block header-title %}Création d'un compte{% endblock %}
 
 {% block extra_head %}
-<script src="{% static "autocomplete_light/autocomplete.js" %}" type="text/javascript"></script>
+<script src="{% static "vendor/jquery.autocomplete-light/3.5.0/dist/jquery.autocomplete-light.min.js" %}" type="text/javascript"></script>
 {% endblock %}
 
 {% block main %}
diff --git a/shared/static/vendor/jquery.autocomplete-light/3.5.0/dist/jquery.autocomplete-light.js b/shared/static/vendor/jquery.autocomplete-light/3.5.0/dist/jquery.autocomplete-light.js
new file mode 100644
index 00000000..a916bff5
--- /dev/null
+++ b/shared/static/vendor/jquery.autocomplete-light/3.5.0/dist/jquery.autocomplete-light.js
@@ -0,0 +1,1698 @@
+/*
+ *  jquery-autocomplete-light - v3.5.0
+ *  Dead simple autocompletion and widgets for jQuery
+ *  http://yourlabs.org
+ *
+ *  Made by James Pic
+ *  Under MIT License
+ */
+/*
+Here is the list of the major difference with other autocomplete scripts:
+
+- don't do anything but fire a signal when a choice is selected: it's
+left as an exercise to the developer to implement whatever he wants when
+that happens
+- don't generate the autocomplete HTML, it should be generated by the server
+
+Let's establish the vocabulary used in this script, so that we speak the
+same language:
+
+- The text input element is "input",
+- The box that contains a list of choices is "box",
+- Each result in the "autocomplete" is a "choice",
+- With a capital A, "Autocomplete", is the class or an instance of the
+class.
+
+Here is a fantastic schema in ASCII art:
+
+    +---------------------+ <----- Input
+    | Your city name ? <---------- Placeholder
+    +---------------------+
+    | Paris, France       | <----- Autocomplete
+    | Paris, TX, USA      |
+    | Paris, TN, USA      |
+    | Paris, KY, USA <------------ Choice
+    | Paris, IL, USA      |
+    +---------------------+
+
+This script defines three signals:
+
+- hilightChoice: when a choice is hilight, or that the user
+navigates into a choice with the keyboard,
+- dehilightChoice: when a choice was hilighed, and that the user
+navigates into another choice with the keyboard or mouse,
+- selectChoice: when the user clicks on a choice, or that he pressed
+enter on a hilighted choice.
+
+They all work the same, here's a trivial example:
+
+  $('#your-autocomplete').bind(
+      'selectChoice',
+      function(e, choice, autocomplete) {
+          alert('You selected: ' + choice.html());
+      }
+  );
+
+Note that 'e' is the variable containing the event object.
+
+Also, note that this script is composed of two main parts:
+
+- The Autocomplete class that handles all interaction, defined as
+`Autocomplete`,
+- The jQuery plugin that manages Autocomplete instance, defined as
+`$.fn.yourlabsAutocomplete`
+*/
+
+if (window.isOpera === undefined) {
+    var isOpera = (navigator.userAgent.indexOf('Opera')>=0) && parseFloat(navigator.appVersion);
+}
+
+if (window.isIE === undefined) {
+    var isIE = ((document.all) && (!isOpera)) && parseFloat(navigator.appVersion.split('MSIE ')[1].split(';')[0]);
+}
+
+if (window.findPosX === undefined) {
+    window.findPosX = function(obj) {
+        var curleft = 0;
+        if (obj.offsetParent) {
+            while (obj.offsetParent) {
+                curleft += obj.offsetLeft - ((isOpera) ? 0 : obj.scrollLeft);
+                obj = obj.offsetParent;
+            }
+            // IE offsetParent does not include the top-level
+            if (isIE && obj.parentElement){
+                curleft += obj.offsetLeft - obj.scrollLeft;
+            }
+        } else if (obj.x) {
+            curleft += obj.x;
+        }
+        return curleft;
+    }
+}
+
+if (window.findPosY === undefined) {
+    window.findPosY = function(obj) {
+        var curtop = 0;
+        if (obj.offsetParent) {
+            while (obj.offsetParent) {
+                curtop += obj.offsetTop - ((isOpera) ? 0 : obj.scrollTop);
+                obj = obj.offsetParent;
+            }
+            // IE offsetParent does not include the top-level
+            if (isIE && obj.parentElement){
+                curtop += obj.offsetTop - obj.scrollTop;
+            }
+        } else if (obj.y) {
+            curtop += obj.y;
+        }
+        return curtop;
+    }
+}
+
+// Our class will live in the yourlabs global namespace.
+if (window.yourlabs === undefined) window.yourlabs = {};
+
+// Fix #25: Prevent accidental inclusion of autocomplete_light/static.html
+if (window.yourlabs.Autocomplete !== undefined)
+    console.log('WARNING ! You are loading autocomplete.js **again**.');
+
+yourlabs.getInternetExplorerVersion = function()
+// Returns the version of Internet Explorer or a -1
+// (indicating the use of another browser).
+{
+  var rv = -1; // Return value assumes failure.
+  if (navigator.appName === 'Microsoft Internet Explorer')
+  {
+    var ua = navigator.userAgent;
+    var re  = new RegExp('MSIE ([0-9]{1,}[.0-9]{0,})');
+    if (re.exec(ua) !== null)
+      rv = parseFloat( RegExp.$1 );
+  }
+  return rv;
+};
+
+$.fn.yourlabsRegistry = function(key, value) {
+    var ie = yourlabs.getInternetExplorerVersion();
+
+    if (ie === -1 || ie > 8) {
+        // If not on IE8 and friends, that's all we need to do.
+        return value === undefined ? this.data(key) : this.data(key, value);
+    }
+
+    if ($.fn.yourlabsRegistry.data === undefined) {
+        $.fn.yourlabsRegistry.data = {};
+    }
+
+    if ($.fn.yourlabsRegistry.guid === undefined) {
+        $.fn.yourlabsRegistry.guid = function() {
+            return 'xxxxxxxx-xxxx-4xxx-yxxx-xxxxxxxxxxxx'.replace(
+                /[xy]/g,
+                function(c) {
+                    var r = Math.random()*16|0, v = c === 'x' ? r : (r&0x3|0x8);
+                    return v.toString(16);
+                }
+            );
+        };
+    }
+
+    var attributeName = 'data-yourlabs-' + key + '-registry-id';
+    var id = this.attr(attributeName);
+
+    if (id === undefined) {
+        id = $.fn.yourlabsRegistry.guid();
+        this.attr(attributeName, id);
+    }
+
+    if (value !== undefined) {
+        $.fn.yourlabsRegistry.data[id] = value;
+    }
+
+    return $.fn.yourlabsRegistry.data[id];
+};
+
+/*
+The autocomplete class constructor:
+
+- takes a takes a text input element as argument,
+- sets attributes and methods for this instance.
+
+The reason you want to learn about all this script is that you will then be
+able to override any variable or function in it on a case-per-case basis.
+However, overriding is the job of the jQuery plugin so the procedure is
+described there.
+*/
+yourlabs.Autocomplete = function (input) {
+    /*
+    The text input element that should have an autocomplete.
+    */
+    this.input = input;
+
+    // The value of the input. It is kept as an attribute for optimisation
+    // purposes.
+    this.value = null;
+
+    /*
+    It is possible to wait until a certain number of characters have been
+    typed in the input before making a request to the server, to limit the
+    number of requests.
+
+    However, you may want the autocomplete to behave like a select. If you
+    want that a simple click shows the autocomplete, set this to 0.
+     */
+    this.minimumCharacters = 2;
+
+    /*
+    In a perfect world, we would hide the autocomplete when the input looses
+    focus (on blur). But in reality, if the user clicks on a choice, the
+    input looses focus, and that would hide the autocomplete, *before* we
+    can intercept the click on the choice.
+
+    When the input looses focus, wait for this number of milliseconds before
+    hiding the autocomplete.
+     */
+    this.hideAfter = 200;
+
+    /*
+    Normally the autocomplete box aligns with the left edge of the input. To
+    align with the right edge of the input instead, change this variable.
+     */
+    this.alignRight = false;
+
+    /*
+    The server should have a URL that takes the input value, and responds
+    with the list of choices as HTML. In most cases, an absolute URL is
+    better.
+     */
+    this.url = false;
+
+    /*
+    Although this script will make sure that it doesn't have multiple ajax
+    requests at the time, it also supports debouncing.
+
+    Set a number of milliseconds here, it is the number of milliseconds that it
+    will wait before querying the server. The higher it is, the less it will
+    spam the server but the more the user will wait.
+    */
+    this.xhrWait = 200;
+
+    /*
+    As the server responds with plain HTML, we need a selector to find the
+    choices that it contains.
+
+    For example, if the URL returns an HTML body where every result is in a
+    div of class "choice", then this should be set to '.choice'.
+     */
+    this.choiceSelector = '.choice';
+
+    /*
+    When the user hovers a choice, it is nice to hilight it, for
+    example by changing it's background color. That's the job of CSS code.
+
+    However, the CSS can not depend on the :hover because the user can
+    hilight choices with the keyboard by pressing the up and down
+    keys.
+
+    To counter that problem, we specify a particular class that will be set
+    on a choice when it's 'hilighted', and unset when it's
+    'dehilighted'.
+     */
+    this.hilightClass = 'hilight';
+
+    /*
+    You can set this variable to true if you want the first choice
+    to be hilighted by default.
+    */
+    this.autoHilightFirst = false;
+
+
+    /*
+    You can set this variable to false in order to allow opening of results
+    in new tabs or windows
+    */
+    this.bindMouseDown = true;
+
+    /*
+    The value of the input is passed to the server via a GET variable. This
+    is the name of the variable.
+     */
+    this.queryVariable = 'q';
+
+    /*
+    This dict will also be passed to the server as GET variables.
+
+    If this autocomplete depends on another user defined value, then the
+    other user defined value should be set in this dict.
+
+    Consider a country select and a city autocomplete. The city autocomplete
+    should only fetch city choices that are in the selected country. To
+    achieve this, update the data with the value of the country select:
+
+        $('select[name=country]').change(function() {
+            $('city[name=country]').yourlabsAutocomplete().data = {
+                country: $(this).val(),
+            }
+        });
+     */
+    this.data = {};
+
+    /*
+    To avoid several requests to be pending at the same time, the current
+    request is aborted before a new one is sent. This attribute will hold the
+    current XMLHttpRequest.
+     */
+    this.xhr = false;
+
+    /*
+    fetch() keeps a copy of the data sent to the server in this attribute. This
+    avoids double fetching the same autocomplete.
+     */
+    this.lastData = {};
+
+    // The autocomplete box HTML.
+    this.box = $('<span class="yourlabs-autocomplete" ' +
+        'data-input-id="' + this.input.attr('id') + '"></span>');
+
+    /*
+    We'll append the box to the container and calculate an absolute position
+    every time the autocomplete is shown in the fixPosition method.
+
+    By default, this traverses this.input's parents to find the nearest parent
+    with an 'absolute' or 'fixed' position. This prevents scrolling issues. If
+    we can't find a parent that would be correct to append to, default to
+    <body>.
+    */
+    this.container = this.input.parents().filter(function() {
+        var position = $(this).css('position');
+        return position === 'absolute' || position === 'fixed';
+    }).first();
+    if (!this.container.length) this.container = $('body');
+};
+
+/*
+Rather than directly setting up the autocomplete (DOM events etc ...) in
+the constructor, setup is done in this method. This allows to:
+
+- instanciate an Autocomplete,
+- override attribute/methods of the instance,
+- and *then* setup the instance.
+ */
+yourlabs.Autocomplete.prototype.initialize = function() {
+    var ie = yourlabs.getInternetExplorerVersion();
+
+    this.input
+        .on('blur.autocomplete', $.proxy(this.inputBlur, this))
+        .on('focus.autocomplete', $.proxy(this.inputClick, this))
+        .on('keydown.autocomplete', $.proxy(this.inputKeyup, this));
+
+    $(window).on('resize', $.proxy(function() {
+        if (this.box.is(':visible')) this.fixPosition();
+    }, this));
+
+    // Currently, our positioning doesn't work well in Firefox. Since it's not
+    // the first option on mobile phones and small devices, we'll hide the bug
+    // until this is fixed.
+    if (/Firefox/i.test(navigator.userAgent))
+        $(window).on('scroll', $.proxy(this.hide, this));
+
+    if (ie === -1 || ie > 9) {
+        this.input.on('input.autocomplete', $.proxy(this.refresh, this));
+    }
+    else
+    {
+        var events = [
+            'keyup.autocomplete',
+            'keypress.autocomplete',
+            'cut.autocomplete',
+            'paste.autocomplete'
+        ]
+
+        this.input.on(events.join(' '), function($e) {
+            $.proxy(this.inputKeyup, this);
+        })
+    }
+
+    /*
+    Bind mouse events to fire signals. Because the same signals will be
+    sent if the user uses keyboard to work with the autocomplete.
+     */
+    this.box
+        .on('mouseenter', this.choiceSelector, $.proxy(this.boxMouseenter, this))
+        .on('mouseleave', this.choiceSelector, $.proxy(this.boxMouseleave, this));
+    if(this.bindMouseDown){
+        this.box
+        .on('mousedown', this.choiceSelector, $.proxy(this.boxClick, this));
+    }
+
+    /*
+    Initially - empty data queried
+    */
+    this.data[this.queryVariable] = '';
+};
+
+// Unbind callbacks on input.
+yourlabs.Autocomplete.prototype.destroy = function(input) {
+    input
+        .unbind('blur.autocomplete')
+        .unbind('focus.autocomplete')
+        .unbind('input.autocomplete')
+        .unbind('keydown.autocomplete')
+        .unbind('keypress.autocomplete')
+        .unbind('keyup.autocomplete')
+};
+
+yourlabs.Autocomplete.prototype.inputBlur = function(e) {
+    window.setTimeout($.proxy(this.hide, this), this.hideAfter);
+};
+
+yourlabs.Autocomplete.prototype.inputClick = function(e) {
+    if (this.value === null)
+        this.value = this.getQuery();
+
+    if (this.value.length >= this.minimumCharacters)
+        this.show();
+};
+
+// When mouse enters the box:
+yourlabs.Autocomplete.prototype.boxMouseenter = function(e) {
+    // ... the first thing we want is to send the dehilight signal
+    // for any hilighted choice ...
+    var current = this.box.find('.' + this.hilightClass);
+
+    this.input.trigger('dehilightChoice',
+        [current, this]);
+
+    // ... and then sent the hilight signal for the choice.
+    this.input.trigger('hilightChoice',
+        [$(e.currentTarget), this]);
+};
+
+// When mouse leaves the box:
+yourlabs.Autocomplete.prototype.boxMouseleave = function(e) {
+    // Send dehilightChoice when the mouse leaves a choice.
+    this.input.trigger('dehilightChoice',
+        [this.box.find('.' + this.hilightClass), this]);
+};
+
+// When mouse clicks in the box:
+yourlabs.Autocomplete.prototype.boxClick = function(e) {
+    var current = this.box.find('.' + this.hilightClass);
+
+    this.input.trigger('selectChoice', [current, this]);
+};
+
+// Return the value to pass to this.queryVariable.
+yourlabs.Autocomplete.prototype.getQuery = function() {
+    // Return the input's value by default.
+    return this.input.val();
+};
+
+yourlabs.Autocomplete.prototype.inputKeyup = function(e) {
+    if (!this.input.is(':visible'))
+        // Don't handle keypresses on hidden inputs (ie. with limited choices)
+        return;
+
+    switch(e.keyCode) {
+        case 40: // down arrow
+        case 38: // up arrow
+        case 16: // shift
+        case 17: // ctrl
+        case 18: // alt
+            this.move(e);
+            break;
+
+        case 9: // tab
+        case 13: // enter
+            if (!this.box.is(':visible')) return;
+
+            var choice = this.box.find('.' + this.hilightClass);
+
+            if (!choice.length) {
+                // Don't get in the way, let the browser submit form or focus
+                // on next element.
+                return;
+            }
+
+            e.preventDefault();
+            e.stopPropagation();
+
+            this.input.trigger('selectChoice', [choice, this]);
+            break;
+
+        case 27: // escape
+            if (!this.box.is(':visible')) return;
+            this.hide();
+            break;
+
+        default:
+            this.refresh();
+    }
+};
+
+// This function is in charge of ensuring that a relevant autocomplete is
+// shown.
+yourlabs.Autocomplete.prototype.show = function(html) {
+    // First recalculate the absolute position since the autocomplete may
+    // have changed position.
+    this.fixPosition();
+
+    // Is autocomplete empty ?
+    var empty = $.trim(this.box.find(this.choiceSelector)).length === 0;
+
+    // If the inner container is empty or data has changed and there is no
+    // current pending request, rely on fetch(), which should show the
+    // autocomplete as soon as it's done fetching.
+    if ((this.hasChanged() || empty) && !this.xhr) {
+        this.fetch();
+        return;
+    }
+
+    // And actually, fetch() will call show() with the response
+    // body as argument.
+    if (html !== undefined) {
+        this.box.html(html);
+        this.fixPosition();
+    }
+
+    // Don't display empty boxes.
+    if (this.box.is(':empty')) {
+        if (this.box.is(':visible')) {
+            this.hide();
+        }
+        return;
+    }
+
+    var current = this.box.find('.' + this.hilightClass);
+    var first = this.box.find(this.choiceSelector + ':first');
+    if (first && !current.length && this.autoHilightFirst) {
+        first.addClass(this.hilightClass);
+    }
+
+    // Show the inner and outer container only if necessary.
+    if (!this.box.is(':visible')) {
+        this.box.css('display', 'block');
+        this.fixPosition();
+    }
+};
+
+// This function is in charge of the opposite.
+yourlabs.Autocomplete.prototype.hide = function() {
+    this.box.hide();
+};
+
+// This function is in charge of hilighting the right result from keyboard
+// navigation.
+yourlabs.Autocomplete.prototype.move = function(e) {
+    if (this.value === null)
+        this.value = this.getQuery();
+
+    // If the autocomplete should not be displayed then return.
+    if (this.value.length < this.minimumCharacters) return true;
+
+    // The current choice if any.
+    var current = this.box.find('.' + this.hilightClass);
+
+    // Prevent default browser behaviours on TAB and RETURN if a choice is
+    // hilighted.
+    if ($.inArray(e.keyCode, [9,13]) > -1 && current.length) {
+        e.preventDefault();
+    }
+
+    // If not KEY_UP or KEY_DOWN, then return.
+    // NOTE: with Webkit, both keyCode and charCode are set to 38/40 for &/(.
+    //       charCode is 0 for arrow keys.
+    //       Ref: http://stackoverflow.com/a/12046935/15690
+    var way;
+    if (e.keyCode === 38 && !e.charCode) way = 'up';
+    else if (e.keyCode === 40 && !e.charCode) way = 'down';
+    else return;
+
+    // The first and last choices. If the user presses down on the last
+    // choice, then the first one will be hilighted.
+    var first = this.box.find(this.choiceSelector + ':first');
+    var last = this.box.find(this.choiceSelector + ':last');
+
+    // The choice that should be hilighted after the move.
+    var target;
+
+    // The autocomplete must be shown so that the user sees what choice
+    // he is hilighting.
+    this.show();
+
+    // If a choice is currently hilighted:
+    if (current.length) {
+        if (way === 'up') {
+            // The target choice becomes the first previous choice.
+            target = current.prevAll(this.choiceSelector + ':first');
+
+            // If none, then the last choice becomes the target.
+            if (!target.length) target = last;
+        } else {
+            // The target choice becomes the first  next** choice.
+            target = current.nextAll(this.choiceSelector + ':first');
+
+            // If none, then the first choice becomes the target.
+            if (!target.length) target = first;
+        }
+
+        // Trigger dehilightChoice on the currently hilighted choice.
+        this.input.trigger('dehilightChoice',
+            [current, this]);
+    } else {
+        target = way === 'up' ? last : first;
+    }
+
+    // Avoid moving the cursor in the input.
+    e.preventDefault();
+
+    // Trigger hilightChoice on the target choice.
+    this.input.trigger('hilightChoice',
+        [target, this]);
+};
+
+/*
+Calculate and set the outer container's absolute positionning. We're copying
+the system from Django admin's JS widgets like the date calendar, which means:
+
+- the autocomplete box is an element appended to this.co,
+- 
+*/
+yourlabs.Autocomplete.prototype.fixPosition = function() {
+    var el = this.input.get(0);
+
+    var zIndex = this.input.parents().filter(function() {
+        return $(this).css('z-index') !== 'auto' && $(this).css('z-index') !== '0';
+    }).first().css('z-index');
+
+    var absolute_parent = this.input.parents().filter(function(){
+      return $(this).css('position') === 'absolute';
+    }).get(0);
+
+    var top = (findPosY(el) + this.input.outerHeight()) + 'px';
+    var left = findPosX(el) + 'px';
+
+    if(absolute_parent !== undefined){
+        var parentTop = findPosY(absolute_parent);
+        var parentLeft = findPosX(absolute_parent);
+        var inputBottom = findPosY(el) + this.input.outerHeight();
+        var inputLeft = findPosX(el);
+        top = (inputBottom - parentTop) + 'px';
+        left = (inputLeft - parentLeft) + 'px';
+    }
+
+    if (this.alignRight) {
+        left = (findPosX(el) + el.scrollLeft - (this.box.outerWidth() - this.input.outerWidth())) + 'px';
+    }
+
+    this.box.appendTo(this.container).css({
+        position: 'absolute',
+        minWidth: parseInt(this.input.outerWidth()),
+        top: top,
+        left: left,
+        zIndex: zIndex
+    });
+};
+
+// Proxy fetch(), with some sanity checks.
+yourlabs.Autocomplete.prototype.refresh = function() {
+    // Set the new current value.
+    this.value = this.getQuery();
+
+    // If the input doesn't contain enought characters then abort, else fetch.
+    if (this.value.length < this.minimumCharacters)
+      this.hide();
+    else
+      this.fetch();
+};
+
+// Return true if the data for this query has changed from last query.
+yourlabs.Autocomplete.prototype.hasChanged = function() {
+    for(var key in this.data) {
+        if (!(key in this.lastData) || this.data[key] !== this.lastData[key]) {
+            return true;
+        }
+    }
+    return false;
+};
+
+// Manage requests to this.url.
+yourlabs.Autocomplete.prototype.fetch = function() {
+    // Add the current value to the data dict.
+    this.data[this.queryVariable] = this.value;
+
+    // Ensure that this request is different from the previous one
+    if (!this.hasChanged()) {
+        // Else show the same box again.
+        this.show();
+        return;
+    }
+
+    this.lastData = {};
+    for(var key in this.data) {
+        this.lastData[key] = this.data[key];
+    }
+
+    // Abort any unsent requests.
+    if (this.xhr && this.xhr.readyState === 0) this.xhr.abort();
+
+    // Abort any request that we planned to make.
+    if (this.timeoutId) clearTimeout(this.timeoutId);
+
+    // Make an asynchronous GET request to this.url in this.xhrWait ms
+    this.timeoutId = setTimeout($.proxy(this.makeXhr, this), this.xhrWait);
+};
+
+// Wrapped ajax call to use with setTimeout in fetch().
+yourlabs.Autocomplete.prototype.makeXhr = function() {
+    this.input.addClass('xhr-pending');
+
+    this.xhr = $.ajax(this.url, {
+        type: 'GET',
+        data: this.data,
+        complete: $.proxy(this.fetchComplete, this)
+    });
+};
+
+// Callback for the ajax response.
+yourlabs.Autocomplete.prototype.fetchComplete = function(jqXHR, textStatus) {
+    if (this.xhr === jqXHR) {
+        // Current request finished.
+        this.xhr = false;
+    } else {
+        // Ignore response from earlier request.
+        return;
+    }
+
+    // Current request done, nothing else pending.
+    this.input.removeClass('xhr-pending');
+
+    if (textStatus === 'abort') return;
+    this.show(jqXHR.responseText);
+};
+
+/*
+The jQuery plugin that manages Autocomplete instances across the various
+inputs. It is named 'yourlabsAutocomplete' rather than just 'autocomplete'
+to live happily with other plugins that may define an autocomplete() jQuery
+plugin.
+
+It takes an array as argument, the array may contain any attribute or
+function that should override the Autocomplete builtin. For example:
+
+  $('input#your-autocomplete').yourlabsAutocomplete({
+      url: '/some/url/',
+      hide: function() {
+          this.outerContainer
+      },
+  })
+
+Also, it implements a simple identity map, which means that:
+
+  // First call for an input instanciates the Autocomplete instance
+  $('input#your-autocomplete').yourlabsAutocomplete({
+      url: '/some/url/',
+  });
+
+  // Other calls return the previously created Autocomplete instance
+  $('input#your-autocomplete').yourlabsAutocomplete().data = {
+      newData: $('#foo').val(),
+  }
+
+To destroy an autocomplete, call yourlabsAutocomplete('destroy').
+*/
+$.fn.yourlabsAutocomplete = function(overrides) {
+    if (this.length < 1) {
+        // avoid crashing when called on a non existing element
+        return;
+    }
+
+    overrides = overrides ? overrides : {};
+    var autocomplete = this.yourlabsRegistry('autocomplete');
+
+    if (overrides === 'destroy') {
+        if (autocomplete) {
+            autocomplete.destroy(this);
+            this.removeData('autocomplete');
+        }
+        return;
+    }
+
+    // Disable the browser's autocomplete features on that input.
+    this.attr('autocomplete', 'off');
+
+    // If no Autocomplete instance is defined for this id, make one.
+    if (autocomplete === undefined) {
+        // Instanciate Autocomplete.
+        autocomplete = new yourlabs.Autocomplete(this);
+
+        // Extend the instance with data-autocomplete-* overrides
+        for (var key in this.data()) {
+            if (!key) continue;
+            if (key.substr(0, 12) !== 'autocomplete' || key === 'autocomplete')
+                continue;
+            var newKey = key.replace('autocomplete', '');
+            newKey = newKey.charAt(0).toLowerCase() + newKey.slice(1);
+            autocomplete[newKey] = this.data(key);
+        }
+
+        // Extend the instance with overrides.
+        autocomplete = $.extend(autocomplete, overrides);
+
+        if (!autocomplete.url) {
+            alert('Autocomplete needs a url !');
+            return;
+        }
+
+        this.yourlabsRegistry('autocomplete', autocomplete);
+
+        // All set, call initialize().
+        autocomplete.initialize();
+    }
+
+    // Return the Autocomplete instance for this id from the registry.
+    return autocomplete;
+};
+
+// Binding some default behaviors.
+$(document).ready(function() {
+    function removeHilightClass(e, choice, autocomplete) {
+        choice.removeClass(autocomplete.hilightClass);
+    }
+    $(document).bind('hilightChoice', function(e, choice, autocomplete) {
+        choice.addClass(autocomplete.hilightClass);
+    });
+    $(document).bind('dehilightChoice', removeHilightClass);
+    $(document).bind('selectChoice', removeHilightClass);
+    $(document).bind('selectChoice', function(e, choice, autocomplete) {
+        autocomplete.hide();
+    });
+});
+
+$(document).ready(function() {
+    /* Credit: django.contrib.admin (BSD) */
+
+    var showAddAnotherPopup = function(triggeringLink) {
+        var name = triggeringLink.attr( 'id' ).replace(/^add_/, '');
+        name = id_to_windowname(name);
+        href = triggeringLink.attr( 'href' );
+
+        if (href.indexOf('?') === -1) {
+            href += '?';
+        }
+
+        href += '&winName=' + name;
+
+        var height = 500;
+        var width = 800;
+        var left = (screen.width/2)-(width/2);
+        var top = (screen.height/2)-(height/2);
+        var win = window.open(href, name, 'toolbar=no, location=no, directories=no, status=no, menubar=no, scrollbars=yes, resizable=yes, copyhistory=no, width='+width+', height='+height+', top='+top+', left='+left)
+
+        function removeOverlay() {
+            if (win.closed) {
+                $('#yourlabs_overlay').remove();
+            } else {
+                setTimeout(removeOverlay, 500);
+            }
+        }
+
+        $('body').append('<div id="yourlabs_overlay"></div');
+        $('#yourlabs_overlay').click(function() { 
+            win.close(); 
+            $(this).remove();
+        });
+
+        setTimeout(removeOverlay, 1500);
+        
+        win.focus();
+
+        return false;
+    }
+
+    var dismissAddAnotherPopup = function(win, newId, newRepr) {
+        // newId and newRepr are expected to have previously been escaped by
+        newId = html_unescape(newId);
+        newRepr = html_unescape(newRepr);
+        var name = windowname_to_id(win.name);
+        var elem = document.getElementById(name);
+
+        if (elem) {
+            if ($(elem).is('select')) {
+                var o = new Option(newRepr, newId);
+                elem.options[elem.options.length] = o;
+                o.selected = true;
+            }
+        } else {
+            alert('Could not get input id for win ' + name);
+        }
+
+        win.close();
+    }
+
+    window.dismissAddAnotherPopup = dismissAddAnotherPopup
+
+    var html_unescape = function(text) {
+    // Unescape a string that was escaped using django.utils.html.escape.
+        text = text.replace(/</g, '');
+        text = text.replace(/"/g, '"');
+        text = text.replace(/'/g, '\'');
+        text = text.replace(/&/g, '&');
+        return text;
+    }
+
+    // IE doesn't accept periods or dashes in the window name, but the element IDs
+    // we use to generate popup window names may contain them, therefore we map them
+    // to allowed characters in a reversible way so that we can locate the correct
+    // element when the popup window is dismissed.
+    var id_to_windowname = function(text) {
+        text = text.replace(/\./g, '__dot__');
+        text = text.replace(/\-/g, '__dash__');
+        text = text.replace(/\[/g, '__braceleft__');
+        text = text.replace(/\]/g, '__braceright__');
+        return text;
+    } 
+
+    var windowname_to_id = function(text) {
+        text = text.replace(/__dot__/g, '.');
+        text = text.replace(/__dash__/g, '-');
+        text = text.replace(/__braceleft__/g, '[');
+        text = text.replace(/__braceright__/g, ']');
+        return text;
+    }
+
+    $( '.autocomplete-add-another' ).show().click(function(e) {
+        e.preventDefault(  );
+        showAddAnotherPopup( $( this ) );
+    });
+});
+
+if (window.yourlabs === undefined) window.yourlabs = {};
+
+yourlabs.RemoteAutocompleteWidget = {
+    /*
+    The default deck getValue() implementation just returns the PK from the
+    choice HTML. RemoteAutocompleteWidget.getValue's implementation checks for
+    a url too. If a url is found, it will post to that url and expect the pk to
+    be in the response.
+
+    This is how autocomplete-light supports proposing values that are not there
+    in the database until user selection.
+    */
+    getValue: function(choice) {
+        var value = choice.data('value');
+
+        if (typeof(value) === 'string' && isNaN(value) && value.match(/^https?:/)) {
+            $.ajax(this.autocompleteOptions.url, {
+                async: false,
+                traditional: true,
+                type: 'post',
+                data: {
+                    'value': value
+                },
+                success: function(text, jqXHR, textStatus) {
+                    value = text;
+                }
+            });
+
+            choice.data('value', value);
+        }
+
+        return value;
+    }
+}
+
+$(document).bind('yourlabsWidgetReady', function() {
+    // Instanciate decks with RemoteAutocompleteWidget as override for all widgets with
+    // autocomplete 'remote'.
+    $('body').on('initialize', '.autocomplete-light-widget[data-bootstrap=rest_model]', function() {
+        $(this).yourlabsWidget(yourlabs.RemoteAutocompleteWidget);
+    });
+});
+
+/*
+This script enables TextWidget, a widget for CharField that supports
+autocomplete for comma-separated values.
+
+It's organization is not final, there are a couple of things that are also used
+in widget.js that will be re-factored probably in a script called lib.js.
+
+The API however, is consistent with widget.js, and is not meant to change.
+
+For now, the script is composed of these parts:
+
+- a handful of jQuery extensions to ease treatment of comma separated values in
+  an input,
+- yourlabs.TextWidget is stripped version of yourlabs.Widget, to handle the
+  behavior of a comma separated autocompleted input,
+- yourlabsTextWidget jQuery extension which role is to manage TextWidget instances,
+- yourlabsTextWidget initialization system, which supports dynamically added
+  autocompletes (ie. admin inlines)
+*/
+
+$.fn.getSelectionStart = function(){
+    var r;
+    // Written by jQuery4U
+    // http://www.jquery4u.com/snippets/6-jquery-cursor-functions/#.UDPQ9xXtFw8
+    if(this.lengh === 0) return -1;
+    input = this[0];
+
+    var pos = input.value.length;
+
+    if (input.createTextRange) {
+        if (window.getSelection) {
+            r = window.getSelection(); //IE11
+        } else {
+            r = document.selection.createRange().duplicate();
+            r.moveEnd('character', input.value.length);
+        }
+        if (r.text === '')
+            pos = input.value.length;
+        pos = input.value.lastIndexOf(r.text);
+    } else if (typeof(input.selectionStart) !== undefined)
+    pos = input.selectionStart;
+
+    return pos;
+}
+
+$.fn.getCursorPosition = function(){
+    // Written by jQuery4U
+    if (this.lengh === 0) return -1;
+    return $(this).getSelectionStart();
+}
+
+// Return the word on which the cursor is on.
+//
+// Consider the pipe "|" as an ASCII representation of the cursor, with such an
+// input value::
+//
+//     foo, bar|, baz
+//
+// getCursorWord would return 'bar'.
+$.fn.getCursorWord = function() {
+    var value = $(this).val();
+    var positions = $(this).getCursorWordPositions();
+    return value.substring(positions[0], positions[1]);
+}
+
+// Return the offsets of the word on which the cursor is on.
+//
+// Consider the pipe "|" as an ASCII representation of the cursor, with such an
+// input value::
+//
+//     foo, bar|, baz
+//
+// getCursorWord would return [6, 8].
+$.fn.getCursorWordPositions = function() {
+    var position = $(this).getCursorPosition();
+    var value = $(this).val();
+
+    // find start of word
+    for(var start=position - 1; start >= 0; start--) {
+        if (value[start] === ',') {
+            break;
+        }
+    }
+    start = start < 0 ? 0 : start;
+
+    // find end of word
+    for(var end=position; end <= value.length - 1; end++) {
+        if (value[end] === ',') {
+            break;
+        }
+    }
+
+    while(value[start] === ',' || value[start] === ' ') start++;
+    while(value[end] === ',' || value[end] === ' ') end--;
+
+    return [start, end + 1];
+}
+
+// TextWidget ties an input with an autocomplete.
+yourlabs.TextWidget = function(input) {
+    this.input = input;
+    this.autocompleteOptions = {
+        getQuery: function() {
+            return this.input.getCursorWord();
+        }
+    }
+}
+
+// The widget is in charge of managing its Autocomplete.
+yourlabs.TextWidget.prototype.initializeAutocomplete = function() {
+    this.autocomplete = this.input.yourlabsAutocomplete(
+        this.autocompleteOptions);
+
+    // Add a class to ease css selection of autocompletes for widgets
+    this.autocomplete.box.addClass(
+        'autocomplete-light-text-widget');
+};
+
+// Bind Autocomplete.selectChoice signal to TextWidget.selectChoice()
+yourlabs.TextWidget.prototype.bindSelectChoice = function() {
+    this.input.bind('selectChoice', function(e, choice) {
+        if (!choice.length)
+            return // placeholder: create choice here
+
+        $(this).yourlabsTextWidget().selectChoice(choice);
+    });
+};
+
+// Called when a choice is selected from the Autocomplete.
+yourlabs.TextWidget.prototype.selectChoice = function(choice) {
+    var inputValue = this.input.val();
+    var choiceValue = this.getValue(choice);
+    var positions = this.input.getCursorWordPositions();
+
+    var newValue = inputValue.substring(0, positions[0]);
+    newValue += choiceValue;
+    newValue += inputValue.substring(positions[1]);
+
+    this.input.val(newValue);
+    this.input.focus();
+}
+
+// Return the value of an HTML choice, used to fill the input.
+yourlabs.TextWidget.prototype.getValue = function(choice) {
+    return $.trim(choice.text());
+}
+
+// Initialize the widget.
+yourlabs.TextWidget.prototype.initialize = function() {
+    this.initializeAutocomplete();
+    this.bindSelectChoice();
+}
+
+// Destroy the widget. Takes a widget element because a cloned widget element
+// will be dirty, ie. have wrong .input and .widget properties.
+yourlabs.TextWidget.prototype.destroy = function(input) {
+    input
+        .unbind('selectChoice')
+        .yourlabsAutocomplete('destroy');
+}
+
+// TextWidget factory, registry and destroyer, as jQuery extension.
+$.fn.yourlabsTextWidget = function(overrides) {
+    var widget;
+    overrides = overrides ? overrides : {};
+
+    if (overrides === 'destroy') {
+        widget = this.data('widget');
+        if (widget) {
+            widget.destroy(this);
+            this.removeData('widget');
+        }
+        return
+    }
+
+    if (this.data('widget') === undefined) {
+        // Instanciate the widget
+        widget = new yourlabs.TextWidget(this);
+
+        // Pares data-*
+        var data = this.data();
+        var dataOverrides = {
+            autocompleteOptions: {
+                // workaround a display bug
+                minimumCharacters: 0,
+                getQuery: function() {
+                    // Override getQuery since we need the autocomplete to filter
+                    // choices based on the word the cursor is on, rather than the full
+                    // input value.
+                    return this.input.getCursorWord();
+                }
+            }
+        };
+        for (var key in data) {
+            if (!key) continue;
+
+            if (key.substr(0, 12) === 'autocomplete') {
+                if (key === 'autocomplete') continue;
+
+                var newKey = key.replace('autocomplete', '');
+                newKey = newKey.replace(newKey[0], newKey[0].toLowerCase())
+                dataOverrides.autocompleteOptions[newKey] = data[key];
+            } else {
+                dataOverrides[key] = data[key];
+            }
+        }
+
+        // Allow attribute overrides
+        widget = $.extend(widget, dataOverrides);
+
+        // Allow javascript object overrides
+        widget = $.extend(widget, overrides);
+
+        this.data('widget', widget);
+
+        // Setup for usage
+        widget.initialize();
+
+        // Widget is ready
+        widget.input.attr('data-widget-ready', 1);
+        widget.input.trigger('widget-ready');
+    }
+
+    return this.data('widget');
+}
+
+$(document).ready(function() {
+    $('body').on('initialize', 'input[data-widget-bootstrap=text]', function() {
+        /*
+        Only setup autocompletes on inputs which have
+        data-widget-bootstrap=text, if you want to initialize some
+        autocompletes with custom code, then set
+        data-widget-boostrap=yourbootstrap or something like that.
+        */
+        $(this).yourlabsTextWidget();
+    });
+
+    // Solid initialization, usage::
+    //
+    //      $(document).bind('yourlabsTextWidgetReady', function() {
+    //          $('body').on('initialize', 'input[data-widget-bootstrap=text]', function() {
+    //              $(this).yourlabsTextWidget({
+    //                  yourCustomArgs: // ...
+    //              })
+    //          });
+    //      });
+    $(document).trigger('yourlabsTextWidgetReady');
+
+    $('.autocomplete-light-text-widget:not([id*="__prefix__"])').each(function() {
+        $(this).trigger('initialize');
+    });
+
+    $(document).bind('DOMNodeInserted', function(e) {
+        var widget = $(e.target).find('.autocomplete-light-text-widget');
+
+        if (!widget.length) {
+            widget = $(e.target).is('.autocomplete-light-text-widget') ? $(e.target) : false;
+
+            if (!widget) {
+                return;
+            }
+        }
+
+        // Ignore inserted autocomplete box elements.
+        if (widget.is('.yourlabs-autocomplete')) {
+            return;
+        }
+
+        // Ensure that the newly added widget is clean, in case it was cloned.
+        widget.yourlabsWidget('destroy');
+        widget.find('input').yourlabsAutocomplete('destroy');
+
+        widget.trigger('initialize');
+    });
+})
+
+/*
+Widget complements Autocomplete by enabling autocompletes to be used as
+value holders. It looks very much like Autocomplete in its design. Thus, it
+is recommended to read the source of Autocomplete first.
+
+Widget behaves like the autocomplete in facebook profile page, which all
+users should be able to use.
+
+Behind the scenes, Widget maintains a normal hidden select which makes it
+simple to play with on the server side like on the client side. If a value
+is added and selected in the select element, then it is added to the deck,
+and vice-versa.
+
+It needs some elements, and established vocabulary:
+
+- ".autocomplete-light-widget" element wraps all the HTML necessary for the
+ widget,
+- ".deck" contains the list of selected choice(s) as HTML,
+- "input" should be the text input that has the Autocomplete,
+- "select" a (optionnaly multiple) select
+- ".remove" a (preferabely hidden) element that contains a value removal
+ indicator, like an "X" sign or a trashcan icon, it is used to prefix every
+ children of the deck
+- ".choice-template" a (preferabely hidden) element that contains the template
+ for choices which are added directly in the select, as they should be
+ copied in the deck,
+
+To avoid complexity, this script relies on extra HTML attributes, and
+particularely one called 'data-value'. Learn more about data attributes:
+http://dev.w3.org/html5/spec/global-attributes.html#embedding-custom-non-visible-data-with-the-data-attributes
+
+When a choice is selected from the Autocomplete, its element is cloned
+and appended to the deck - "deck" contains "choices". It is important that the
+choice elements of the autocomplete all contain a data-value attribute.
+The value of data-value is used to fill the selected options in the hidden
+select field.
+
+If choices may not all have a data-value attribute, then you can
+override Widget.getValue() to implement your own logic.
+*/
+
+// Our class will live in the yourlabs global namespace.
+if (window.yourlabs === undefined) window.yourlabs = {};
+
+/*
+Instanciate a Widget.
+*/
+yourlabs.Widget = function(widget) {
+    // These attributes where described above.
+    this.widget = widget;
+    this.input = this.widget.find('input[data-autocomplete-url]');
+    this.select = this.widget.find('select');
+    this.deck = this.widget.find('.deck');
+    this.choiceTemplate = this.widget.find('.choice-template .choice');
+
+    // The number of choices that the user may select with this widget. Set 0
+    // for no limit. In the case of a foreign key you want to set it to 1.
+    this.maximumValues = 0;
+
+    // Clear input when choice made? 1 for yes, 0 for no
+    this.clearInputOnSelectChoice = '1';
+}
+
+// When a choice is selected from the autocomplete of this widget,
+// getValue() is called to add and select the option in the select.
+yourlabs.Widget.prototype.getValue = function(choice) {
+    return choice.attr('data-value');
+};
+
+// The widget is in charge of managing its Autocomplete.
+yourlabs.Widget.prototype.initializeAutocomplete = function() {
+    this.autocomplete = this.input.yourlabsAutocomplete()
+
+    // Add a class to ease css selection of autocompletes for widgets
+    this.autocomplete.box.addClass('autocomplete-light-widget');
+};
+
+// Bind Autocomplete.selectChoice signal to Widget.selectChoice()
+yourlabs.Widget.prototype.bindSelectChoice = function() {
+    this.input.bind('selectChoice', function(e, choice) {
+        if (!choice.length)
+            return // placeholder: create choice here
+
+        var widget = $(this).parents('.autocomplete-light-widget'
+            ).yourlabsWidget();
+
+        widget.selectChoice(choice);
+
+        widget.widget.trigger('widgetSelectChoice', [choice, widget]);
+    });
+};
+
+// Called when a choice is selected from the Autocomplete.
+yourlabs.Widget.prototype.selectChoice = function(choice) {
+    // Get the value for this choice.
+    var value = this.getValue(choice);
+
+    if (!value) {
+        if (window.console) console.log('yourlabs.Widget.getValue failed');
+        return;
+    }
+
+    this.freeDeck();
+    this.addToDeck(choice, value);
+    this.addToSelect(choice, value);
+
+    var index = $(':input:visible').index(this.input);
+    this.resetDisplay();
+
+    if (this.clearInputOnSelectChoice === '1') {
+        this.input.val('');
+        this.autocomplete.value = '';
+    }
+
+    if (this.input.is(':visible')) {
+        this.input.focus();
+    } else {
+        var next = $(':input:visible:eq('+ index +')');
+        next.focus();
+    }
+
+    if (! this.select.is('[multiple]')) {
+        this.input.prop('disabled', true);
+    }
+}
+
+// Unselect a value if the maximum number of selected values has been
+// reached.
+yourlabs.Widget.prototype.freeDeck = function() {
+    var slots = this.maximumValues - this.deck.children().length;
+
+    if (this.maximumValues && slots < 1) {
+        // We'll remove the first choice which is supposed to be the oldest
+        var choice = $(this.deck.children()[0]);
+
+        this.deselectChoice(choice);
+    }
+}
+
+// Empty the search input and hide it if maximumValues has been reached.
+yourlabs.Widget.prototype.resetDisplay = function() {
+    var selected = this.select.find('option:selected').length;
+
+    if (this.maximumValues && selected === this.maximumValues) {
+        this.input.hide();
+    } else {
+        this.input.show();
+    }
+
+    this.deck.show();
+
+    // Also fix the position if the autocomplete is shown.
+    if (this.autocomplete.box.is(':visible')) this.autocomplete.fixPosition();
+}
+
+yourlabs.Widget.prototype.deckChoiceHtml = function(choice, value) {
+    var deckChoice = choice.clone();
+
+    this.addRemove(deckChoice);
+
+    return deckChoice;
+}
+
+yourlabs.Widget.prototype.optionChoice = function(option) {
+    var optionChoice = this.choiceTemplate.clone();
+
+    var target = optionChoice.find('.append-option-html');
+
+    if (target.length) {
+        target.append(option.html());
+    } else {
+        optionChoice.html(option.html());
+    }
+
+    return optionChoice;
+}
+
+yourlabs.Widget.prototype.addRemove = function(choices) {
+    var removeTemplate = this.widget.find('.remove:last')
+        .clone().css('display', 'inline-block');
+
+    var target = choices.find('.prepend-remove');
+
+    if (target.length) {
+        target.prepend(removeTemplate);
+    } else {
+        // Add the remove icon to each choice
+        choices.prepend(removeTemplate);
+    }
+}
+
+// Add a selected choice of a given value to the deck.
+yourlabs.Widget.prototype.addToDeck = function(choice, value) {
+    var existing_choice = this.deck.find('[data-value="'+value+'"]');
+
+    // Avoid duplicating choices in the deck.
+    if (!existing_choice.length) {
+        var deckChoice = this.deckChoiceHtml(choice);
+
+        // In case getValue() actually **created** the value, for example
+        // with a post request.
+        deckChoice.attr('data-value', value);
+
+        this.deck.append(deckChoice);
+    }
+}
+
+// Add a selected choice of a given value to the deck.
+yourlabs.Widget.prototype.addToSelect = function(choice, value) {
+    var option = this.select.find('option[value="'+value+'"]');
+
+    if (! option.length) {
+        this.select.append(
+            '<option selected="selected" value="'+ value +'"></option>');
+        option = this.select.find('option[value="'+value+'"]');
+    }
+
+    option.attr('selected', 'selected');
+
+    this.select.trigger('change');
+    this.updateAutocompleteExclude();
+}
+
+// Called when the user clicks .remove in a deck choice.
+yourlabs.Widget.prototype.deselectChoice = function(choice) {
+    var value = this.getValue(choice);
+
+    this.select.find('option[value="'+value+'"]').remove();
+    this.select.trigger('change');
+
+    choice.remove();
+
+    if (this.deck.children().length === 0) {
+        this.deck.hide();
+    }
+
+    this.updateAutocompleteExclude();
+    this.resetDisplay();
+
+    this.input.prop('disabled', false);
+
+    this.widget.trigger('widgetDeselectChoice', [choice, this]);
+};
+
+yourlabs.Widget.prototype.updateAutocompleteExclude = function() {
+    var widget = this;
+    var choices = this.deck.find(this.autocomplete.choiceSelector);
+
+    this.autocomplete.data.exclude = $.map(choices, function(choice) {
+        return widget.getValue($(choice));
+    });
+}
+
+yourlabs.Widget.prototype.initialize = function() {
+    this.initializeAutocomplete();
+
+    // Working around firefox tempering form values after reload
+    var widget = this;
+    this.deck.find(this.autocomplete.choiceSelector).each(function() {
+        var value = widget.getValue($(this));
+        var option = widget.select.find('option[value="'+value+'"]');
+        if (!option.prop('selected')) option.prop('selected', true);
+    });
+
+    var choices = this.deck.find(
+        this.input.yourlabsAutocomplete().choiceSelector);
+
+    this.addRemove(choices);
+    this.resetDisplay();
+
+    if (widget.select.val() && ! this.select.is('[multiple]')) {
+        this.input.prop('disabled', true);
+    }
+
+    this.bindSelectChoice();
+}
+
+// Destroy the widget. Takes a widget element because a cloned widget element
+// will be dirty, ie. have wrong .input and .widget properties.
+yourlabs.Widget.prototype.destroy = function(widget) {
+    widget.find('input')
+        .unbind('selectChoice')
+        .yourlabsAutocomplete('destroy');
+}
+
+// Get or create or destroy a widget instance.
+//
+// On first call, yourlabsWidget() will instanciate a widget applying all
+// passed overrides.
+//
+// On later calls, yourlabsWidget() will return the previously created widget
+// instance, which is stored in widget.data('widget').
+//
+// Calling yourlabsWidget('destroy') will destroy the widget. Useful if the
+// element was blindly cloned with .clone(true) for example.
+$.fn.yourlabsWidget = function(overrides) {
+    overrides = overrides ? overrides : {};
+
+    var widget = this.yourlabsRegistry('widget');
+
+    if (overrides === 'destroy') {
+        if (widget) {
+            widget.destroy(this);
+            this.removeData('widget');
+        }
+        return
+    }
+
+    if (widget === undefined) {
+        // Instanciate the widget
+        widget = new yourlabs.Widget(this);
+
+        // Extend the instance with data-widget-* overrides
+        for (var key in this.data()) {
+            if (!key) continue;
+            if (key.substr(0, 6) !== 'widget' || key === 'widget') continue;
+            var newKey = key.replace('widget', '');
+            newKey = newKey.charAt(0).toLowerCase() + newKey.slice(1);
+            widget[newKey] = this.data(key);
+        }
+
+        // Allow javascript object overrides
+        widget = $.extend(widget, overrides);
+
+        $(this).yourlabsRegistry('widget', widget);
+
+        // Setup for usage
+        widget.initialize();
+
+        // Widget is ready
+        widget.widget.attr('data-widget-ready', 1);
+        widget.widget.trigger('widget-ready');
+    }
+
+    return widget;
+}
+
+$(document).ready(function() {
+    $('body').on('initialize', '.autocomplete-light-widget[data-widget-bootstrap=normal]', function() {
+        /*
+        Only setup widgets which have data-widget-bootstrap=normal, if you want to
+        initialize some Widgets with custom code, then set
+        data-widget-boostrap=yourbootstrap or something like that.
+        */
+        $(this).yourlabsWidget();
+    });
+
+    // Call Widget.deselectChoice when .remove is clicked
+    $('body').on('click', '.autocomplete-light-widget .deck .remove', function() {
+        var widget = $(this).parents('.autocomplete-light-widget'
+            ).yourlabsWidget();
+
+        var selector = widget.input.yourlabsAutocomplete().choiceSelector;
+        var choice = $(this).parents(selector);
+
+        widget.deselectChoice(choice);
+    });
+
+    // Solid initialization, usage:
+    //
+    //
+    //      $(document).bind('yourlabsWidgetReady', function() {
+    //          $('.your.autocomplete-light-widget').on('initialize', function() {
+    //              $(this).yourlabsWidget({
+    //                  yourCustomArgs: // ...
+    //              })
+    //          });
+    //      });
+    $(document).trigger('yourlabsWidgetReady');
+
+    $('.autocomplete-light-widget:not([id*="__prefix__"])').each(function() {
+        $(this).trigger('initialize');
+    });
+
+    $(document).bind('DOMNodeInserted', function(e) {
+        /*
+        Support values added directly in the select via js (ie. choices created in
+        modal or popup).
+
+        For this, we listen to DOMNodeInserted and intercept insert of <option> nodes.
+
+        The reason for that is that change is not triggered when options are
+        added like this:
+
+            $('select#id-dependencies').append(
+                '<option value="9999" selected="selected">blabla</option>')
+        */
+        var widget;
+
+        if ($(e.target).is('option')) { // added an option ?
+            widget = $(e.target).parents('.autocomplete-light-widget');
+
+            if (!widget.length) {
+                return;
+            }
+
+            widget = widget.yourlabsWidget();
+            var option = $(e.target);
+            var value = option.attr('value');
+            var choice = widget.deck.find('[data-value="'+value+'"]');
+
+            if (!choice.length) {
+                var deckChoice = widget.optionChoice(option);
+
+                deckChoice.attr('data-value', value);
+
+                widget.selectChoice(deckChoice);
+            }
+        } else { // added a widget ?
+            var notReady = '.autocomplete-light-widget:not([data-widget-ready])'
+            widget = $(e.target).find(notReady);
+
+            if (!widget.length) {
+                return;
+            }
+
+            // Ignore inserted autocomplete box elements.
+            if (widget.is('.yourlabs-autocomplete')) {
+                return;
+            }
+
+            // Ensure that the newly added widget is clean, in case it was
+            // cloned with data.
+            widget.yourlabsWidget('destroy');
+            widget.find('input').yourlabsAutocomplete('destroy');
+
+            // added a widget: initialize the widget.
+            widget.trigger('initialize');
+        }
+    });
+
+    var ie = yourlabs.getInternetExplorerVersion();
+    if (ie !== -1 && ie < 9) {
+        observe = [
+            '.autocomplete-light-widget:not([data-yourlabs-skip])',
+            '.autocomplete-light-widget option:not([data-yourlabs-skip])'
+        ].join();
+        $(observe).attr('data-yourlabs-skip', 1);
+
+        var ieDOMNodeInserted = function() {
+            // http://msdn.microsoft.com/en-us/library/ms536957
+            $(observe).each(function() {
+                $(document).trigger(jQuery.Event('DOMNodeInserted', {target: $(this)}));
+                $(this).attr('data-yourlabs-skip', 1);
+            });
+
+            setTimeout(ieDOMNodeInserted, 500);
+        }
+        setTimeout(ieDOMNodeInserted, 500);
+    }
+
+});
diff --git a/shared/static/vendor/jquery.autocomplete-light/3.5.0/dist/jquery.autocomplete-light.min.js b/shared/static/vendor/jquery.autocomplete-light/3.5.0/dist/jquery.autocomplete-light.min.js
new file mode 100644
index 00000000..a5bc6774
--- /dev/null
+++ b/shared/static/vendor/jquery.autocomplete-light/3.5.0/dist/jquery.autocomplete-light.min.js
@@ -0,0 +1,9 @@
+/*
+ *  jquery-autocomplete-light - v3.5.0
+ *  Dead simple autocompletion and widgets for jQuery
+ *  http://yourlabs.org
+ *
+ *  Made by James Pic
+ *  Under MIT License
+ */
+if(void 0===window.isOpera)var isOpera=navigator.userAgent.indexOf("Opera")>=0&&parseFloat(navigator.appVersion);if(void 0===window.isIE)var isIE=document.all&&!isOpera&&parseFloat(navigator.appVersion.split("MSIE ")[1].split(";")[0]);void 0===window.findPosX&&(window.findPosX=function(a){var b=0;if(a.offsetParent){for(;a.offsetParent;)b+=a.offsetLeft-(isOpera?0:a.scrollLeft),a=a.offsetParent;isIE&&a.parentElement&&(b+=a.offsetLeft-a.scrollLeft)}else a.x&&(b+=a.x);return b}),void 0===window.findPosY&&(window.findPosY=function(a){var b=0;if(a.offsetParent){for(;a.offsetParent;)b+=a.offsetTop-(isOpera?0:a.scrollTop),a=a.offsetParent;isIE&&a.parentElement&&(b+=a.offsetTop-a.scrollTop)}else a.y&&(b+=a.y);return b}),void 0===window.yourlabs&&(window.yourlabs={}),void 0!==window.yourlabs.Autocomplete&&console.log("WARNING ! You are loading autocomplete.js **again**."),yourlabs.getInternetExplorerVersion=function(){var a=-1;if("Microsoft Internet Explorer"===navigator.appName){var b=navigator.userAgent;null!==new RegExp("MSIE ([0-9]{1,}[.0-9]{0,})").exec(b)&&(a=parseFloat(RegExp.$1))}return a},$.fn.yourlabsRegistry=function(a,b){var c=yourlabs.getInternetExplorerVersion();if(-1===c||c>8)return void 0===b?this.data(a):this.data(a,b);void 0===$.fn.yourlabsRegistry.data&&($.fn.yourlabsRegistry.data={}),void 0===$.fn.yourlabsRegistry.guid&&($.fn.yourlabsRegistry.guid=function(){return"xxxxxxxx-xxxx-4xxx-yxxx-xxxxxxxxxxxx".replace(/[xy]/g,function(a){var b=16*Math.random()|0;return("x"===a?b:3&b|8).toString(16)})});var d="data-yourlabs-"+a+"-registry-id",e=this.attr(d);return void 0===e&&(e=$.fn.yourlabsRegistry.guid(),this.attr(d,e)),void 0!==b&&($.fn.yourlabsRegistry.data[e]=b),$.fn.yourlabsRegistry.data[e]},yourlabs.Autocomplete=function(a){this.input=a,this.value=null,this.minimumCharacters=2,this.hideAfter=200,this.alignRight=!1,this.url=!1,this.xhrWait=200,this.choiceSelector=".choice",this.hilightClass="hilight",this.autoHilightFirst=!1,this.bindMouseDown=!0,this.queryVariable="q",this.data={},this.xhr=!1,this.lastData={},this.box=$('<span class="yourlabs-autocomplete" data-input-id="'+this.input.attr("id")+'"></span>'),this.container=this.input.parents().filter(function(){var a=$(this).css("position");return"absolute"===a||"fixed"===a}).first(),this.container.length||(this.container=$("body"))},yourlabs.Autocomplete.prototype.initialize=function(){var a=yourlabs.getInternetExplorerVersion();if(this.input.on("blur.autocomplete",$.proxy(this.inputBlur,this)).on("focus.autocomplete",$.proxy(this.inputClick,this)).on("keydown.autocomplete",$.proxy(this.inputKeyup,this)),$(window).on("resize",$.proxy(function(){this.box.is(":visible")&&this.fixPosition()},this)),/Firefox/i.test(navigator.userAgent)&&$(window).on("scroll",$.proxy(this.hide,this)),-1===a||a>9)this.input.on("input.autocomplete",$.proxy(this.refresh,this));else{var b=["keyup.autocomplete","keypress.autocomplete","cut.autocomplete","paste.autocomplete"];this.input.on(b.join(" "),function(a){$.proxy(this.inputKeyup,this)})}this.box.on("mouseenter",this.choiceSelector,$.proxy(this.boxMouseenter,this)).on("mouseleave",this.choiceSelector,$.proxy(this.boxMouseleave,this)),this.bindMouseDown&&this.box.on("mousedown",this.choiceSelector,$.proxy(this.boxClick,this)),this.data[this.queryVariable]=""},yourlabs.Autocomplete.prototype.destroy=function(a){a.unbind("blur.autocomplete").unbind("focus.autocomplete").unbind("input.autocomplete").unbind("keydown.autocomplete").unbind("keypress.autocomplete").unbind("keyup.autocomplete")},yourlabs.Autocomplete.prototype.inputBlur=function(a){window.setTimeout($.proxy(this.hide,this),this.hideAfter)},yourlabs.Autocomplete.prototype.inputClick=function(a){null===this.value&&(this.value=this.getQuery()),this.value.length>=this.minimumCharacters&&this.show()},yourlabs.Autocomplete.prototype.boxMouseenter=function(a){var b=this.box.find("."+this.hilightClass);this.input.trigger("dehilightChoice",[b,this]),this.input.trigger("hilightChoice",[$(a.currentTarget),this])},yourlabs.Autocomplete.prototype.boxMouseleave=function(a){this.input.trigger("dehilightChoice",[this.box.find("."+this.hilightClass),this])},yourlabs.Autocomplete.prototype.boxClick=function(a){var b=this.box.find("."+this.hilightClass);this.input.trigger("selectChoice",[b,this])},yourlabs.Autocomplete.prototype.getQuery=function(){return this.input.val()},yourlabs.Autocomplete.prototype.inputKeyup=function(a){if(this.input.is(":visible"))switch(a.keyCode){case 40:case 38:case 16:case 17:case 18:this.move(a);break;case 9:case 13:if(!this.box.is(":visible"))return;var b=this.box.find("."+this.hilightClass);if(!b.length)return;a.preventDefault(),a.stopPropagation(),this.input.trigger("selectChoice",[b,this]);break;case 27:if(!this.box.is(":visible"))return;this.hide();break;default:this.refresh()}},yourlabs.Autocomplete.prototype.show=function(a){this.fixPosition();var b=0===$.trim(this.box.find(this.choiceSelector)).length;if((this.hasChanged()||b)&&!this.xhr)return void this.fetch();if(void 0!==a&&(this.box.html(a),this.fixPosition()),this.box.is(":empty"))return void(this.box.is(":visible")&&this.hide());var c=this.box.find("."+this.hilightClass),d=this.box.find(this.choiceSelector+":first");d&&!c.length&&this.autoHilightFirst&&d.addClass(this.hilightClass),this.box.is(":visible")||(this.box.css("display","block"),this.fixPosition())},yourlabs.Autocomplete.prototype.hide=function(){this.box.hide()},yourlabs.Autocomplete.prototype.move=function(a){if(null===this.value&&(this.value=this.getQuery()),this.value.length<this.minimumCharacters)return!0;var b=this.box.find("."+this.hilightClass);$.inArray(a.keyCode,[9,13])>-1&&b.length&&a.preventDefault();var c;if(38!==a.keyCode||a.charCode){if(40!==a.keyCode||a.charCode)return;c="down"}else c="up";var d,e=this.box.find(this.choiceSelector+":first"),f=this.box.find(this.choiceSelector+":last");this.show(),b.length?("up"===c?(d=b.prevAll(this.choiceSelector+":first"),d.length||(d=f)):(d=b.nextAll(this.choiceSelector+":first"),d.length||(d=e)),this.input.trigger("dehilightChoice",[b,this])):d="up"===c?f:e,a.preventDefault(),this.input.trigger("hilightChoice",[d,this])},yourlabs.Autocomplete.prototype.fixPosition=function(){var a=this.input.get(0),b=this.input.parents().filter(function(){return"auto"!==$(this).css("z-index")&&"0"!==$(this).css("z-index")}).first().css("z-index"),c=this.input.parents().filter(function(){return"absolute"===$(this).css("position")}).get(0),d=findPosY(a)+this.input.outerHeight()+"px",e=findPosX(a)+"px";if(void 0!==c){var f=findPosY(c),g=findPosX(c),h=findPosY(a)+this.input.outerHeight(),i=findPosX(a);d=h-f+"px",e=i-g+"px"}this.alignRight&&(e=findPosX(a)+a.scrollLeft-(this.box.outerWidth()-this.input.outerWidth())+"px"),this.box.appendTo(this.container).css({position:"absolute",minWidth:parseInt(this.input.outerWidth()),top:d,left:e,zIndex:b})},yourlabs.Autocomplete.prototype.refresh=function(){this.value=this.getQuery(),this.value.length<this.minimumCharacters?this.hide():this.fetch()},yourlabs.Autocomplete.prototype.hasChanged=function(){for(var a in this.data)if(!(a in this.lastData)||this.data[a]!==this.lastData[a])return!0;return!1},yourlabs.Autocomplete.prototype.fetch=function(){if(this.data[this.queryVariable]=this.value,!this.hasChanged())return void this.show();this.lastData={};for(var a in this.data)this.lastData[a]=this.data[a];this.xhr&&0===this.xhr.readyState&&this.xhr.abort(),this.timeoutId&&clearTimeout(this.timeoutId),this.timeoutId=setTimeout($.proxy(this.makeXhr,this),this.xhrWait)},yourlabs.Autocomplete.prototype.makeXhr=function(){this.input.addClass("xhr-pending"),this.xhr=$.ajax(this.url,{type:"GET",data:this.data,complete:$.proxy(this.fetchComplete,this)})},yourlabs.Autocomplete.prototype.fetchComplete=function(a,b){this.xhr===a&&(this.xhr=!1,this.input.removeClass("xhr-pending"),"abort"!==b&&this.show(a.responseText))},$.fn.yourlabsAutocomplete=function(a){if(!(this.length<1)){a=a||{};var b=this.yourlabsRegistry("autocomplete");if("destroy"===a)return void(b&&(b.destroy(this),this.removeData("autocomplete")));if(this.attr("autocomplete","off"),void 0===b){b=new yourlabs.Autocomplete(this);for(var c in this.data())if(c&&"autocomplete"===c.substr(0,12)&&"autocomplete"!==c){var d=c.replace("autocomplete","");d=d.charAt(0).toLowerCase()+d.slice(1),b[d]=this.data(c)}if(b=$.extend(b,a),!b.url)return void alert("Autocomplete needs a url !");this.yourlabsRegistry("autocomplete",b),b.initialize()}return b}},$(document).ready(function(){function a(a,b,c){b.removeClass(c.hilightClass)}$(document).bind("hilightChoice",function(a,b,c){b.addClass(c.hilightClass)}),$(document).bind("dehilightChoice",a),$(document).bind("selectChoice",a),$(document).bind("selectChoice",function(a,b,c){c.hide()})}),$(document).ready(function(){var a=function(a){function b(){i.closed?$("#yourlabs_overlay").remove():setTimeout(b,500)}var c=a.attr("id").replace(/^add_/,"");c=d(c),href=a.attr("href"),-1===href.indexOf("?")&&(href+="?"),href+="&winName="+c;var e=500,f=800,g=screen.width/2-f/2,h=screen.height/2-e/2,i=window.open(href,c,"toolbar=no, location=no, directories=no, status=no, menubar=no, scrollbars=yes, resizable=yes, copyhistory=no, width="+f+", height="+e+", top="+h+", left="+g);return $("body").append('<div id="yourlabs_overlay"></div'),$("#yourlabs_overlay").click(function(){i.close(),$(this).remove()}),setTimeout(b,1500),i.focus(),!1},b=function(a,b,d){b=c(b),d=c(d);var f=e(a.name),g=document.getElementById(f);if(g){if($(g).is("select")){var h=new Option(d,b);g.options[g.options.length]=h,h.selected=!0}}else alert("Could not get input id for win "+f);a.close()};window.dismissAddAnotherPopup=b;var c=function(a){return a=a.replace(/</g,""),a=a.replace(/"/g,'"'),a=a.replace(/'/g,"'"),a=a.replace(/&/g,"&")},d=function(a){return a=a.replace(/\./g,"__dot__"),a=a.replace(/\-/g,"__dash__"),a=a.replace(/\[/g,"__braceleft__"),a=a.replace(/\]/g,"__braceright__")},e=function(a){return a=a.replace(/__dot__/g,"."),a=a.replace(/__dash__/g,"-"),a=a.replace(/__braceleft__/g,"["),a=a.replace(/__braceright__/g,"]")};$(".autocomplete-add-another").show().click(function(b){b.preventDefault(),a($(this))})}),void 0===window.yourlabs&&(window.yourlabs={}),yourlabs.RemoteAutocompleteWidget={getValue:function(a){var b=a.data("value");return"string"==typeof b&&isNaN(b)&&b.match(/^https?:/)&&($.ajax(this.autocompleteOptions.url,{async:!1,traditional:!0,type:"post",data:{value:b},success:function(a,c,d){b=a}}),a.data("value",b)),b}},$(document).bind("yourlabsWidgetReady",function(){$("body").on("initialize",".autocomplete-light-widget[data-bootstrap=rest_model]",function(){$(this).yourlabsWidget(yourlabs.RemoteAutocompleteWidget)})}),$.fn.getSelectionStart=function(){var a;if(0===this.lengh)return-1;input=this[0];var b=input.value.length;return input.createTextRange?(window.getSelection?a=window.getSelection():(a=document.selection.createRange().duplicate(),a.moveEnd("character",input.value.length)),""===a.text&&(b=input.value.length),b=input.value.lastIndexOf(a.text)):void 0!==typeof input.selectionStart&&(b=input.selectionStart),b},$.fn.getCursorPosition=function(){return 0===this.lengh?-1:$(this).getSelectionStart()},$.fn.getCursorWord=function(){var a=$(this).val(),b=$(this).getCursorWordPositions();return a.substring(b[0],b[1])},$.fn.getCursorWordPositions=function(){for(var a=$(this).getCursorPosition(),b=$(this).val(),c=a-1;c>=0&&","!==b[c];c--);c=c<0?0:c;for(var d=a;d<=b.length-1&&","!==b[d];d++);for(;","===b[c]||" "===b[c];)c++;for(;","===b[d]||" "===b[d];)d--;return[c,d+1]},yourlabs.TextWidget=function(a){this.input=a,this.autocompleteOptions={getQuery:function(){return this.input.getCursorWord()}}},yourlabs.TextWidget.prototype.initializeAutocomplete=function(){this.autocomplete=this.input.yourlabsAutocomplete(this.autocompleteOptions),this.autocomplete.box.addClass("autocomplete-light-text-widget")},yourlabs.TextWidget.prototype.bindSelectChoice=function(){this.input.bind("selectChoice",function(a,b){b.length&&$(this).yourlabsTextWidget().selectChoice(b)})},yourlabs.TextWidget.prototype.selectChoice=function(a){var b=this.input.val(),c=this.getValue(a),d=this.input.getCursorWordPositions(),e=b.substring(0,d[0]);e+=c,e+=b.substring(d[1]),this.input.val(e),this.input.focus()},yourlabs.TextWidget.prototype.getValue=function(a){return $.trim(a.text())},yourlabs.TextWidget.prototype.initialize=function(){this.initializeAutocomplete(),this.bindSelectChoice()},yourlabs.TextWidget.prototype.destroy=function(a){a.unbind("selectChoice").yourlabsAutocomplete("destroy")},$.fn.yourlabsTextWidget=function(a){var b;if("destroy"===(a=a||{}))return void((b=this.data("widget"))&&(b.destroy(this),this.removeData("widget")));if(void 0===this.data("widget")){b=new yourlabs.TextWidget(this);var c=this.data(),d={autocompleteOptions:{minimumCharacters:0,getQuery:function(){return this.input.getCursorWord()}}};for(var e in c)if(e)if("autocomplete"===e.substr(0,12)){if("autocomplete"===e)continue;var f=e.replace("autocomplete","");f=f.replace(f[0],f[0].toLowerCase()),d.autocompleteOptions[f]=c[e]}else d[e]=c[e];b=$.extend(b,d),b=$.extend(b,a),this.data("widget",b),b.initialize(),b.input.attr("data-widget-ready",1),b.input.trigger("widget-ready")}return this.data("widget")},$(document).ready(function(){$("body").on("initialize","input[data-widget-bootstrap=text]",function(){$(this).yourlabsTextWidget()}),$(document).trigger("yourlabsTextWidgetReady"),$('.autocomplete-light-text-widget:not([id*="__prefix__"])').each(function(){$(this).trigger("initialize")}),$(document).bind("DOMNodeInserted",function(a){var b=$(a.target).find(".autocomplete-light-text-widget");(b.length||(b=!!$(a.target).is(".autocomplete-light-text-widget")&&$(a.target)))&&(b.is(".yourlabs-autocomplete")||(b.yourlabsWidget("destroy"),b.find("input").yourlabsAutocomplete("destroy"),b.trigger("initialize")))})}),void 0===window.yourlabs&&(window.yourlabs={}),yourlabs.Widget=function(a){this.widget=a,this.input=this.widget.find("input[data-autocomplete-url]"),this.select=this.widget.find("select"),this.deck=this.widget.find(".deck"),this.choiceTemplate=this.widget.find(".choice-template .choice"),this.maximumValues=0,this.clearInputOnSelectChoice="1"},yourlabs.Widget.prototype.getValue=function(a){return a.attr("data-value")},yourlabs.Widget.prototype.initializeAutocomplete=function(){this.autocomplete=this.input.yourlabsAutocomplete(),this.autocomplete.box.addClass("autocomplete-light-widget")},yourlabs.Widget.prototype.bindSelectChoice=function(){this.input.bind("selectChoice",function(a,b){if(b.length){var c=$(this).parents(".autocomplete-light-widget").yourlabsWidget();c.selectChoice(b),c.widget.trigger("widgetSelectChoice",[b,c])}})},yourlabs.Widget.prototype.selectChoice=function(a){var b=this.getValue(a);if(!b)return void(window.console&&console.log("yourlabs.Widget.getValue failed"));this.freeDeck(),this.addToDeck(a,b),this.addToSelect(a,b);var c=$(":input:visible").index(this.input);if(this.resetDisplay(),"1"===this.clearInputOnSelectChoice&&(this.input.val(""),this.autocomplete.value=""),this.input.is(":visible"))this.input.focus();else{$(":input:visible:eq("+c+")").focus()}this.select.is("[multiple]")||this.input.prop("disabled",!0)},yourlabs.Widget.prototype.freeDeck=function(){var a=this.maximumValues-this.deck.children().length;if(this.maximumValues&&a<1){var b=$(this.deck.children()[0]);this.deselectChoice(b)}},yourlabs.Widget.prototype.resetDisplay=function(){var a=this.select.find("option:selected").length;this.maximumValues&&a===this.maximumValues?this.input.hide():this.input.show(),this.deck.show(),this.autocomplete.box.is(":visible")&&this.autocomplete.fixPosition()},yourlabs.Widget.prototype.deckChoiceHtml=function(a,b){var c=a.clone();return this.addRemove(c),c},yourlabs.Widget.prototype.optionChoice=function(a){var b=this.choiceTemplate.clone(),c=b.find(".append-option-html");return c.length?c.append(a.html()):b.html(a.html()),b},yourlabs.Widget.prototype.addRemove=function(a){var b=this.widget.find(".remove:last").clone().css("display","inline-block"),c=a.find(".prepend-remove");c.length?c.prepend(b):a.prepend(b)},yourlabs.Widget.prototype.addToDeck=function(a,b){if(!this.deck.find('[data-value="'+b+'"]').length){var c=this.deckChoiceHtml(a);c.attr("data-value",b),this.deck.append(c)}},yourlabs.Widget.prototype.addToSelect=function(a,b){var c=this.select.find('option[value="'+b+'"]');c.length||(this.select.append('<option selected="selected" value="'+b+'"></option>'),c=this.select.find('option[value="'+b+'"]')),c.attr("selected","selected"),this.select.trigger("change"),this.updateAutocompleteExclude()},yourlabs.Widget.prototype.deselectChoice=function(a){var b=this.getValue(a);this.select.find('option[value="'+b+'"]').remove(),this.select.trigger("change"),a.remove(),0===this.deck.children().length&&this.deck.hide(),this.updateAutocompleteExclude(),this.resetDisplay(),this.input.prop("disabled",!1),this.widget.trigger("widgetDeselectChoice",[a,this])},yourlabs.Widget.prototype.updateAutocompleteExclude=function(){var a=this,b=this.deck.find(this.autocomplete.choiceSelector);this.autocomplete.data.exclude=$.map(b,function(b){return a.getValue($(b))})},yourlabs.Widget.prototype.initialize=function(){this.initializeAutocomplete();var a=this;this.deck.find(this.autocomplete.choiceSelector).each(function(){var b=a.getValue($(this)),c=a.select.find('option[value="'+b+'"]');c.prop("selected")||c.prop("selected",!0)});var b=this.deck.find(this.input.yourlabsAutocomplete().choiceSelector);this.addRemove(b),this.resetDisplay(),a.select.val()&&!this.select.is("[multiple]")&&this.input.prop("disabled",!0),this.bindSelectChoice()},yourlabs.Widget.prototype.destroy=function(a){a.find("input").unbind("selectChoice").yourlabsAutocomplete("destroy")},$.fn.yourlabsWidget=function(a){a=a||{};var b=this.yourlabsRegistry("widget");if("destroy"===a)return void(b&&(b.destroy(this),this.removeData("widget")));if(void 0===b){b=new yourlabs.Widget(this);for(var c in this.data())if(c&&"widget"===c.substr(0,6)&&"widget"!==c){var d=c.replace("widget","");d=d.charAt(0).toLowerCase()+d.slice(1),b[d]=this.data(c)}b=$.extend(b,a),$(this).yourlabsRegistry("widget",b),b.initialize(),b.widget.attr("data-widget-ready",1),b.widget.trigger("widget-ready")}return b},$(document).ready(function(){$("body").on("initialize",".autocomplete-light-widget[data-widget-bootstrap=normal]",function(){$(this).yourlabsWidget()}),$("body").on("click",".autocomplete-light-widget .deck .remove",function(){var a=$(this).parents(".autocomplete-light-widget").yourlabsWidget(),b=a.input.yourlabsAutocomplete().choiceSelector,c=$(this).parents(b);a.deselectChoice(c)}),$(document).trigger("yourlabsWidgetReady"),$('.autocomplete-light-widget:not([id*="__prefix__"])').each(function(){$(this).trigger("initialize")}),$(document).bind("DOMNodeInserted",function(a){var b;if($(a.target).is("option")){if(b=$(a.target).parents(".autocomplete-light-widget"),!b.length)return;b=b.yourlabsWidget();var c=$(a.target),d=c.attr("value");if(!b.deck.find('[data-value="'+d+'"]').length){var e=b.optionChoice(c);e.attr("data-value",d),b.selectChoice(e)}}else{if(b=$(a.target).find(".autocomplete-light-widget:not([data-widget-ready])"),!b.length)return;if(b.is(".yourlabs-autocomplete"))return;b.yourlabsWidget("destroy"),b.find("input").yourlabsAutocomplete("destroy"),b.trigger("initialize")}});var a=yourlabs.getInternetExplorerVersion();if(-1!==a&&a<9){observe=[".autocomplete-light-widget:not([data-yourlabs-skip])",".autocomplete-light-widget option:not([data-yourlabs-skip])"].join(),$(observe).attr("data-yourlabs-skip",1);var b=function(){$(observe).each(function(){$(document).trigger(jQuery.Event("DOMNodeInserted",{target:$(this)})),$(this).attr("data-yourlabs-skip",1)}),setTimeout(b,500)};setTimeout(b,500)}});
\ No newline at end of file

From a5071aa2576ae7117f78290656e32a4fa4d53619 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Aur=C3=A9lien=20Delobelle?= <aurelien.delobelle@gmail.com>
Date: Sat, 20 Jan 2018 22:24:13 +0100
Subject: [PATCH 076/101] cof -- Add tests for club views

---
 gestioncof/tests/test_views.py | 122 +++++++++++++++++++++++++++++++++
 1 file changed, 122 insertions(+)
 create mode 100644 gestioncof/tests/test_views.py

diff --git a/gestioncof/tests/test_views.py b/gestioncof/tests/test_views.py
new file mode 100644
index 00000000..738fe353
--- /dev/null
+++ b/gestioncof/tests/test_views.py
@@ -0,0 +1,122 @@
+from django.test import Client, TestCase
+from django.urls import reverse
+
+from gestioncof.models import Club
+from gestioncof.tests.testcases import ViewTestCaseMixin
+
+from .utils import create_user
+
+
+class ClubListViewTests(ViewTestCaseMixin, TestCase):
+    url_name = 'liste-clubs'
+    url_expected = '/clubs/liste'
+
+    auth_user = 'member'
+    auth_forbidden = [None, 'user']
+
+    def setUp(self):
+        super().setUp()
+
+        self.c1 = Club.objects.create(name='Club1')
+        self.c2 = Club.objects.create(name='Club2')
+
+        m = self.users['member']
+        self.c1.membres.add(m)
+        self.c1.respos.add(m)
+
+    def test_as_member(self):
+        r = self.client.get(self.url)
+
+        self.assertEqual(r.status_code, 200)
+        self.assertEqual(r.context['owned_clubs'].get(), self.c1)
+        self.assertEqual(r.context['other_clubs'].get(), self.c2)
+
+    def test_as_staff(self):
+        u = self.users['staff']
+        c = Client()
+        c.force_login(u)
+
+        r = c.get(self.url)
+
+        self.assertEqual(r.status_code, 200)
+        self.assertQuerysetEqual(
+            r.context['owned_clubs'], map(repr, [self.c1, self.c2]),
+            ordered=False,
+        )
+
+
+class ClubMembersViewTests(ViewTestCaseMixin, TestCase):
+    url_name = 'membres-club'
+
+    auth_user = 'staff'
+    auth_forbidden = [None, 'user', 'member']
+
+    @property
+    def url_kwargs(self):
+        return {'name': self.c.name}
+
+    @property
+    def url_expected(self):
+        return '/clubs/membres/{}'.format(self.c.name)
+
+    def setUp(self):
+        super().setUp()
+
+        self.u1 = create_user('u1')
+        self.u2 = create_user('u2')
+
+        self.c = Club.objects.create(name='Club')
+        self.c.membres.add(self.u1, self.u2)
+        self.c.respos.add(self.u1)
+
+    def test_as_staff(self):
+        r = self.client.get(self.url)
+
+        self.assertEqual(r.status_code, 200)
+        self.assertEqual(r.context['members_no_respo'].get(), self.u2)
+
+    def test_as_respo(self):
+        u = self.users['user']
+        self.c.respos.add(u)
+
+        c = Client()
+        c.force_login(u)
+        r = c.get(self.url)
+
+        self.assertEqual(r.status_code, 200)
+
+
+class ClubChangeRespoViewTests(ViewTestCaseMixin, TestCase):
+    url_name = 'change-respo'
+
+    auth_user = 'staff'
+    auth_forbidden = [None, 'user', 'member']
+
+    @property
+    def url_kwargs(self):
+        return {'club_name': self.c.name, 'user_id': self.users['user'].pk}
+
+    @property
+    def url_expected(self):
+        return '/clubs/change_respo/{}/{}'.format(
+            self.c.name, self.users['user'].pk,
+        )
+
+    def setUp(self):
+        super().setUp()
+
+        self.c = Club.objects.create(name='Club')
+
+    def test(self):
+        u = self.users['user']
+        expected_redirect = reverse('membres-club', kwargs={
+            'name': self.c.name,
+        })
+        self.c.membres.add(u)
+
+        r = self.client.get(self.url)
+        self.assertRedirects(r, expected_redirect)
+        self.assertIn(u, self.c.respos.all())
+
+        self.client.get(self.url)
+        self.assertNotIn(u, self.c.respos.all())

From bbe46645f75b123989f71c07054091c9df9e3a38 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Aur=C3=A9lien=20Delobelle?= <aurelien.delobelle@gmail.com>
Date: Sat, 20 Jan 2018 22:24:25 +0100
Subject: [PATCH 077/101] cof -- Fix the club list view

---
 gestioncof/views.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/gestioncof/views.py b/gestioncof/views.py
index 5dfee83f..4e0cb080 100644
--- a/gestioncof/views.py
+++ b/gestioncof/views.py
@@ -566,7 +566,7 @@ def liste_clubs(request):
     if request.user.profile.is_buro:
         data = {'owned_clubs': clubs.all()}
     else:
-        data = {'owned_clubs': request.user.clubs_geres,
+        data = {'owned_clubs': request.user.clubs_geres.all(),
                 'other_clubs': clubs.exclude(respos=request.user)}
     return render(request, 'liste_clubs.html', data)
 

From 7e0ecd8e0f707f912b66cb438778048b877e203e Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Aur=C3=A9lien=20Delobelle?= <aurelien.delobelle@gmail.com>
Date: Sun, 21 Jan 2018 17:51:23 +0100
Subject: [PATCH 078/101] Add assertion to check ical data is as expected

---
 shared/tests/testcases.py | 36 ++++++++++++++++++++++++++++++++++++
 1 file changed, 36 insertions(+)

diff --git a/shared/tests/testcases.py b/shared/tests/testcases.py
index 15792383..14a5fbfe 100644
--- a/shared/tests/testcases.py
+++ b/shared/tests/testcases.py
@@ -8,6 +8,8 @@ from django.test import Client
 from django.utils import timezone
 from django.utils.functional import cached_property
 
+import icalendar
+
 User = get_user_model()
 
 
@@ -92,6 +94,40 @@ class TestCaseMixin:
         else:
             self.assertEqual(actual, expected)
 
+    def _test_event_equal(self, event, exp):
+        for k, v_desc in exp.items():
+            if isinstance(v_desc, tuple):
+                v_getter = v_desc[0]
+                v = v_desc[1]
+            else:
+                v_getter = lambda v: v
+                v = v_desc
+            if v_getter(event[k.upper()]) != v:
+                return False
+        return True
+
+    def _find_event(self, ev, l):
+        for i, elt in enumerate(l):
+            if self._test_event_equal(ev, elt):
+                return elt, i
+        return False, -1
+
+    def assertCalEqual(self, ical_content, expected):
+        remaining = expected.copy()
+        unexpected = []
+
+        cal = icalendar.Calendar.from_ical(ical_content)
+
+        for ev in cal.walk('vevent'):
+            found, i_found = self._find_event(ev, remaining)
+            if found:
+                remaining.pop(i_found)
+            else:
+                unexpected.append(ev)
+
+        self.assertListEqual(unexpected, [])
+        self.assertListEqual(remaining, [])
+
 
 class ViewTestCaseMixin(TestCaseMixin):
     """

From 2e6a54c7dbb8cff5077d35230e063712aa90b3d1 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Aur=C3=A9lien=20Delobelle?= <aurelien.delobelle@gmail.com>
Date: Sun, 21 Jan 2018 17:52:53 +0100
Subject: [PATCH 079/101] cof -- Add tests for calendar views

---
 gestioncof/tests/test_views.py | 151 +++++++++++++++++++++++++++++++++
 1 file changed, 151 insertions(+)
 create mode 100644 gestioncof/tests/test_views.py

diff --git a/gestioncof/tests/test_views.py b/gestioncof/tests/test_views.py
new file mode 100644
index 00000000..e33fe2f2
--- /dev/null
+++ b/gestioncof/tests/test_views.py
@@ -0,0 +1,151 @@
+import uuid
+from datetime import timedelta
+
+from django.contrib import messages
+from django.contrib.messages.api import get_messages
+from django.contrib.messages.storage.base import Message
+from django.test import TestCase
+
+from bda.models import Salle, Tirage
+from gestioncof.models import CalendarSubscription
+from gestioncof.tests.testcases import ViewTestCaseMixin
+
+
+class CalendarViewTests(ViewTestCaseMixin, TestCase):
+    url_name = 'calendar'
+    url_expected = '/calendar/subscription'
+
+    auth_user = 'member'
+    auth_forbidden = [None, 'user']
+
+    post_expected_message = Message(
+        messages.SUCCESS, "Calendrier mis à jour avec succès.")
+
+    def test_get(self):
+        r = self.client.get(self.url)
+        self.assertEqual(r.status_code, 200)
+
+    def test_post_new(self):
+        r = self.client.post(self.url, {
+            'subscribe_to_events': True,
+            'subscribe_to_my_shows': True,
+            'other_shows': [],
+        })
+
+        self.assertEqual(r.status_code, 200)
+        self.assertIn(self.post_expected_message, get_messages(r.wsgi_request))
+        cs = self.users['member'].calendarsubscription
+        self.assertTrue(cs.subscribe_to_events)
+        self.assertTrue(cs.subscribe_to_my_shows)
+
+    def test_post_edit(self):
+        u = self.users['member']
+        token = uuid.uuid4()
+        cs = CalendarSubscription.objects.create(token=token, user=u)
+
+        r = self.client.post(self.url, {
+            'other_shows': [],
+        })
+
+        self.assertEqual(r.status_code, 200)
+        self.assertIn(self.post_expected_message, get_messages(r.wsgi_request))
+        cs.refresh_from_db()
+        self.assertEqual(cs.token, token)
+        self.assertFalse(cs.subscribe_to_events)
+        self.assertFalse(cs.subscribe_to_my_shows)
+
+    def test_post_other_shows(self):
+        t = Tirage.objects.create(
+            ouverture=self.now,
+            fermeture=self.now,
+            active=True,
+        )
+        l = Salle.objects.create()
+        s = t.spectacle_set.create(
+            date=self.now, price=3.5, slots=20, location=l, listing=True)
+
+        r = self.client.post(self.url, {'other_shows': [str(s.pk)]})
+
+        self.assertEqual(r.status_code, 200)
+
+
+class CalendarICSViewTests(ViewTestCaseMixin, TestCase):
+    url_name = 'gestioncof.views.calendar_ics'
+
+    auth_user = None
+    auth_forbidden = []
+
+    @property
+    def url_kwargs(self):
+        return {'token': self.token}
+
+    @property
+    def url_expected(self):
+        return '/calendar/{}/calendar.ics'.format(self.token)
+
+    def setUp(self):
+        super().setUp()
+
+        self.token = uuid.uuid4()
+
+        self.t = Tirage.objects.create(
+            ouverture=self.now,
+            fermeture=self.now,
+            active=True,
+        )
+        l = Salle.objects.create(name='Location')
+        self.s1 = self.t.spectacle_set.create(
+            price=1, slots=10, location=l, listing=True,
+            title='Spectacle 1', date=self.now + timedelta(days=1),
+        )
+        self.s2 = self.t.spectacle_set.create(
+            price=2, slots=20, location=l, listing=True,
+            title='Spectacle 2', date=self.now + timedelta(days=2),
+        )
+        self.s3 = self.t.spectacle_set.create(
+            price=3, slots=30, location=l, listing=True,
+            title='Spectacle 3', date=self.now + timedelta(days=3),
+        )
+
+    def test(self):
+        u = self.users['user']
+        p = u.participant_set.create(tirage=self.t)
+        p.attribution_set.create(spectacle=self.s1)
+
+        self.cs = CalendarSubscription.objects.create(
+            user=u, token=self.token,
+            subscribe_to_my_shows=True, subscribe_to_events=True,
+        )
+        self.cs.other_shows.add(self.s2)
+
+        r = self.client.get(self.url)
+
+        def get_dt_from_ical(v):
+            return v.dt
+
+        self.assertCalEqual(r.content.decode('utf-8'), [
+            {
+                'summary': 'Spectacle 1',
+                'dtstart': (get_dt_from_ical, (
+                    (self.now + timedelta(days=1)).replace(microsecond=0)
+                )),
+                'dtend': (get_dt_from_ical, (
+                    (self.now + timedelta(days=1, hours=2)).replace(
+                        microsecond=0)
+                )),
+                'location': 'Location',
+                'uid': 'show-{}-{}@example.com'.format(self.s1.pk, self.t.pk),
+            },
+            {
+                'summary': 'Spectacle 2',
+                'dtstart': (get_dt_from_ical, (
+                    (self.now + timedelta(days=2)).replace(microsecond=0)
+                )),
+                'dtend': (get_dt_from_ical, (
+                    (self.now + timedelta(days=2, hours=2)).replace(
+                        microsecond=0)
+                )),
+                'location': 'Location',
+                'uid': 'show-{}-{}@example.com'.format(self.s2.pk, self.t.pk),
+            },
+        ])

From acf284862a57f1857a2049067d4bb081a797fffc Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Aur=C3=A9lien=20Delobelle?= <aurelien.delobelle@gmail.com>
Date: Sun, 21 Jan 2018 18:00:56 +0100
Subject: [PATCH 080/101] Users should be able to refuse to subscribe to shows
 and events

---
 gestioncof/forms.py | 6 ++++--
 1 file changed, 4 insertions(+), 2 deletions(-)

diff --git a/gestioncof/forms.py b/gestioncof/forms.py
index 2124b7c8..5a25b815 100644
--- a/gestioncof/forms.py
+++ b/gestioncof/forms.py
@@ -351,10 +351,12 @@ EventFormset = formset_factory(AdminEventForm, BaseEventRegistrationFormset)
 class CalendarForm(forms.ModelForm):
     subscribe_to_events = forms.BooleanField(
             initial=True,
-            label="Événements du COF")
+            label="Événements du COF",
+            required=False)
     subscribe_to_my_shows = forms.BooleanField(
             initial=True,
-            label="Les spectacles pour lesquels j'ai obtenu une place")
+            label="Les spectacles pour lesquels j'ai obtenu une place",
+            required=False)
     other_shows = forms.ModelMultipleChoiceField(
             label="Spectacles supplémentaires",
             queryset=Spectacle.objects.filter(tirage__active=True),

From 38539a9d53607efd417bee8d4d1d930999e39d78 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Aur=C3=A9lien=20Delobelle?= <aurelien.delobelle@gmail.com>
Date: Sun, 21 Jan 2018 18:03:01 +0100
Subject: [PATCH 081/101] Name url to export calendar to ical

---
 gestioncof/templates/gestioncof/calendar_subscription.html | 2 +-
 gestioncof/tests/test_views.py                             | 2 +-
 gestioncof/urls.py                                         | 3 ++-
 3 files changed, 4 insertions(+), 3 deletions(-)

diff --git a/gestioncof/templates/gestioncof/calendar_subscription.html b/gestioncof/templates/gestioncof/calendar_subscription.html
index b13cb7f2..4b9e3cbb 100644
--- a/gestioncof/templates/gestioncof/calendar_subscription.html
+++ b/gestioncof/templates/gestioncof/calendar_subscription.html
@@ -12,7 +12,7 @@ souscrire aux événements du COF et/ou aux spectacles BdA.
 
 {% if token %}
 <p>Votre calendrier (compatible avec toutes les applications d'agenda) se trouve à
-<a href="{% url 'gestioncof.views.calendar_ics' token %}">cette adresse</a>.</p>
+<a href="{% url 'calendar.ics' token %}">cette adresse</a>.</p>
 
 <ul>
     <li>Pour l'ajouter à Thunderbird (lightning), il faut copier ce lien et aller
diff --git a/gestioncof/tests/test_views.py b/gestioncof/tests/test_views.py
index e33fe2f2..06d6be4a 100644
--- a/gestioncof/tests/test_views.py
+++ b/gestioncof/tests/test_views.py
@@ -70,7 +70,7 @@ class CalendarViewTests(ViewTestCaseMixin, TestCase):
 
 
 class CalendarICSViewTests(ViewTestCaseMixin, TestCase):
-    url_name = 'gestioncof.views.calendar_ics'
+    url_name = 'calendar.ics'
 
     auth_user = None
     auth_forbidden = []
diff --git a/gestioncof/urls.py b/gestioncof/urls.py
index 2be609b3..dde543a5 100644
--- a/gestioncof/urls.py
+++ b/gestioncof/urls.py
@@ -52,7 +52,8 @@ events_patterns = [
 calendar_patterns = [
     url(r'^subscription$', views.calendar,
         name='calendar'),
-    url(r'^(?P<token>[a-z0-9-]+)/calendar.ics$', views.calendar_ics)
+    url(r'^(?P<token>[a-z0-9-]+)/calendar.ics$', views.calendar_ics,
+        name='calendar.ics'),
 ]
 
 clubs_patterns = [

From 80ca35a4c0ff1f69916037ffba7713c4a57e5532 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Aur=C3=A9lien=20Delobelle?= <aurelien.delobelle@gmail.com>
Date: Mon, 22 Jan 2018 14:49:02 +0100
Subject: [PATCH 082/101] Add helper to check HttpResponse containing csv

---
 shared/tests/testcases.py | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/shared/tests/testcases.py b/shared/tests/testcases.py
index 15792383..cac036af 100644
--- a/shared/tests/testcases.py
+++ b/shared/tests/testcases.py
@@ -1,3 +1,4 @@
+import csv
 from unittest import mock
 from urllib.parse import parse_qs, urlparse
 
@@ -92,6 +93,10 @@ class TestCaseMixin:
         else:
             self.assertEqual(actual, expected)
 
+    def load_from_csv_response(self, r):
+        decoded = r.content.decode('utf-8')
+        return list(csv.reader(decoded.split('\n')[:-1]))
+
 
 class ViewTestCaseMixin(TestCaseMixin):
     """

From f371606cdbd98298383a038879b6f51d5242b447 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Aur=C3=A9lien=20Delobelle?= <aurelien.delobelle@gmail.com>
Date: Mon, 22 Jan 2018 14:58:38 +0100
Subject: [PATCH 083/101] cof -- Add tests for export views

---
 gestioncof/tests/test_views.py | 159 +++++++++++++++++++++++++++++++++
 1 file changed, 159 insertions(+)
 create mode 100644 gestioncof/tests/test_views.py

diff --git a/gestioncof/tests/test_views.py b/gestioncof/tests/test_views.py
new file mode 100644
index 00000000..8cd323cc
--- /dev/null
+++ b/gestioncof/tests/test_views.py
@@ -0,0 +1,159 @@
+import csv
+
+from django.test import TestCase
+
+from gestioncof.models import Event
+from gestioncof.tests.testcases import ViewTestCaseMixin
+
+from .utils import create_user
+
+
+class ExportMembersViewTests(ViewTestCaseMixin, TestCase):
+    url_name = 'gestioncof.views.export_members'
+    url_expected = '/export/members'
+
+    auth_user = 'staff'
+    auth_forbidden = [None, 'user', 'member']
+
+    def test(self):
+        u1, u2 = self.users['member'], self.users['staff']
+        u1.first_name = 'first'
+        u1.last_name = 'last'
+        u1.email = 'user@mail.net'
+        u1.save()
+        u1.profile.phone = '0123456789'
+        u1.profile.departement = 'Dept'
+        u1.profile.save()
+
+        r = self.client.get(self.url)
+
+        self.assertEqual(r.status_code, 200)
+        data = list(csv.reader(r.content.decode('utf-8').split('\n')[:-1]))
+        self.assertListEqual(data, [
+            [
+                str(u1.pk), 'member', 'first', 'last', 'user@mail.net',
+                '0123456789', '1A', 'Dept', 'normalien',
+            ],
+            [str(u2.pk), 'staff', '', '', '', '', '1A', '', 'normalien'],
+        ])
+
+
+class MegaHelpers:
+
+    def setUp(self):
+        super().setUp()
+
+        u1 = create_user('u1')
+        u1.first_name = 'first'
+        u1.last_name = 'last'
+        u1.email = 'user@mail.net'
+        u1.save()
+        u1.profile.phone = '0123456789'
+        u1.profile.departement = 'Dept'
+        u1.profile.comments = 'profile.comments'
+        u1.profile.save()
+
+        u2 = create_user('u2')
+        u2.profile.save()
+
+        m = Event.objects.create(title='MEGA 2017')
+
+        cf1 = m.commentfields.create(name='Commentaire')
+        cf2 = m.commentfields.create(
+            name='Comment Field 2', fieldtype='char',
+        )
+
+        option_type = m.options.create(name='Conscrit/Orga ?')
+        choice_orga = option_type.choices.create(value='Orga')
+        choice_conscrit = option_type.choices.create(value='Conscrit')
+
+        mr1 = m.eventregistration_set.create(user=u1)
+        mr1.options.add(choice_orga)
+        mr1.comments.create(commentfield=cf1, content='Comment 1')
+        mr1.comments.create(commentfield=cf2, content='Comment 2')
+
+        mr2 = m.eventregistration_set.create(user=u2)
+        mr2.options.add(choice_conscrit)
+
+        self.u1 = u1
+        self.u2 = u2
+        self.m = m
+        self.choice_orga = choice_orga
+        self.choice_conscrit = choice_conscrit
+
+
+class ExportMegaViewTests(MegaHelpers, ViewTestCaseMixin, TestCase):
+    url_name = 'gestioncof.views.export_mega'
+    url_expected = '/export/mega'
+
+    auth_user = 'staff'
+    auth_forbidden = [None, 'user', 'member']
+
+    def test(self):
+        r = self.client.get(self.url)
+
+        self.assertEqual(r.status_code, 200)
+        self.assertListEqual(self.load_from_csv_response(r), [
+            [
+                'u1', 'first', 'last', 'user@mail.net', '0123456789',
+                str(self.u1.pk), 'profile.comments', 'Comment 1---Comment 2',
+            ],
+            ['u2', '', '', '', '', str(self.u2.pk), '', ''],
+        ])
+
+
+class ExportMegaOrgasViewTests(MegaHelpers, ViewTestCaseMixin, TestCase):
+    url_name = 'gestioncof.views.export_mega_orgas'
+    url_expected = '/export/mega/orgas'
+
+    auth_user = 'staff'
+    auth_forbidden = [None, 'user', 'member']
+
+    def test(self):
+
+        r = self.client.get(self.url)
+
+        self.assertEqual(r.status_code, 200)
+        self.assertListEqual(self.load_from_csv_response(r), [
+            [
+                'u1', 'first', 'last', 'user@mail.net', '0123456789',
+                str(self.u1.pk), 'profile.comments', 'Comment 1---Comment 2',
+            ],
+        ])
+
+
+class ExportMegaParticipantsViewTests(
+        MegaHelpers, ViewTestCaseMixin, TestCase):
+    url_name = 'gestioncof.views.export_mega_participants'
+    url_expected = '/export/mega/participants'
+
+    auth_user = 'staff'
+    auth_forbidden = [None, 'user', 'member']
+
+    def test(self):
+        r = self.client.get(self.url)
+
+        self.assertEqual(r.status_code, 200)
+        self.assertListEqual(self.load_from_csv_response(r), [
+            ['u2', '', '', '', '', str(self.u2.pk), '', ''],
+        ])
+
+
+class ExportMegaRemarksViewTests(
+        MegaHelpers, ViewTestCaseMixin, TestCase):
+    url_name = 'gestioncof.views.export_mega_remarksonly'
+    url_expected = '/export/mega/avecremarques'
+
+    auth_user = 'staff'
+    auth_forbidden = [None, 'user', 'member']
+
+    def test(self):
+        r = self.client.get(self.url)
+
+        self.assertEqual(r.status_code, 200)
+        self.assertListEqual(self.load_from_csv_response(r), [
+            [
+                'u1', 'first', 'last', 'user@mail.net', '0123456789',
+                str(self.u1.pk), 'profile.comments', 'Comment 1',
+            ],
+        ])

From a813507ddd6218e51769f8a0b8e17ddc7f04115f Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Aur=C3=A9lien=20Delobelle?= <aurelien.delobelle@gmail.com>
Date: Mon, 22 Jan 2018 14:59:57 +0100
Subject: [PATCH 084/101] Name urls of export views (cof members, mega)

---
 gestioncof/templates/gestioncof/utile_cof.html |  8 ++++----
 gestioncof/tests/test_views.py                 | 10 +++++-----
 gestioncof/urls.py                             | 15 ++++++++++-----
 3 files changed, 19 insertions(+), 14 deletions(-)

diff --git a/gestioncof/templates/gestioncof/utile_cof.html b/gestioncof/templates/gestioncof/utile_cof.html
index ae024949..8cea33df 100644
--- a/gestioncof/templates/gestioncof/utile_cof.html
+++ b/gestioncof/templates/gestioncof/utile_cof.html
@@ -7,15 +7,15 @@
                 <h2>Liens utiles du COF</h2>
                 <h3>COF</h3>
                 <ul>
-                <li><a href="{% url 'gestioncof.views.export_members' %}">Export des membres du COF</a></li>
+                <li><a href="{% url 'cof.membres_export' %}">Export des membres du COF</a></li>
                 <li><a href="{% url 'gestioncof.views.liste_diffcof' %}">Diffusion COF</a></li> 
                 </ul>
 
                 <h3>Mega</h3>
                 <ul>
-                <li><a href="{% url 'gestioncof.views.export_mega_participants' %}">Export des non-orgas uniquement</a></li>
-		  <li><a href="{% url 'gestioncof.views.export_mega_orgas' %}">Export des orgas uniquement</a></li>
-		  <li><a href="{% url 'gestioncof.views.export_mega' %}">Export de tout le monde</a></li>
+                <li><a href="{% url 'cof.mega_export_participants' %}">Export des non-orgas uniquement</a></li>
+		  <li><a href="{% url 'cof.mega_export_orgas' %}">Export des orgas uniquement</a></li>
+		  <li><a href="{% url 'cof.mega_export' %}">Export de tout le monde</a></li>
                 </ul>
 
                 <p>Note&nbsp;: pour ouvrir les fichiers .csv avec Excel, il faut
diff --git a/gestioncof/tests/test_views.py b/gestioncof/tests/test_views.py
index 8cd323cc..02288e2b 100644
--- a/gestioncof/tests/test_views.py
+++ b/gestioncof/tests/test_views.py
@@ -9,7 +9,7 @@ from .utils import create_user
 
 
 class ExportMembersViewTests(ViewTestCaseMixin, TestCase):
-    url_name = 'gestioncof.views.export_members'
+    url_name = 'cof.membres_export'
     url_expected = '/export/members'
 
     auth_user = 'staff'
@@ -83,7 +83,7 @@ class MegaHelpers:
 
 
 class ExportMegaViewTests(MegaHelpers, ViewTestCaseMixin, TestCase):
-    url_name = 'gestioncof.views.export_mega'
+    url_name = 'cof.mega_export'
     url_expected = '/export/mega'
 
     auth_user = 'staff'
@@ -103,7 +103,7 @@ class ExportMegaViewTests(MegaHelpers, ViewTestCaseMixin, TestCase):
 
 
 class ExportMegaOrgasViewTests(MegaHelpers, ViewTestCaseMixin, TestCase):
-    url_name = 'gestioncof.views.export_mega_orgas'
+    url_name = 'cof.mega_export_orgas'
     url_expected = '/export/mega/orgas'
 
     auth_user = 'staff'
@@ -124,7 +124,7 @@ class ExportMegaOrgasViewTests(MegaHelpers, ViewTestCaseMixin, TestCase):
 
 class ExportMegaParticipantsViewTests(
         MegaHelpers, ViewTestCaseMixin, TestCase):
-    url_name = 'gestioncof.views.export_mega_participants'
+    url_name = 'cof.mega_export_participants'
     url_expected = '/export/mega/participants'
 
     auth_user = 'staff'
@@ -141,7 +141,7 @@ class ExportMegaParticipantsViewTests(
 
 class ExportMegaRemarksViewTests(
         MegaHelpers, ViewTestCaseMixin, TestCase):
-    url_name = 'gestioncof.views.export_mega_remarksonly'
+    url_name = 'cof.mega_export_remarks'
     url_expected = '/export/mega/avecremarques'
 
     auth_user = 'staff'
diff --git a/gestioncof/urls.py b/gestioncof/urls.py
index 2be609b3..ef3b4190 100644
--- a/gestioncof/urls.py
+++ b/gestioncof/urls.py
@@ -6,12 +6,17 @@ from gestioncof import views, petits_cours_views
 from gestioncof.decorators import buro_required
 
 export_patterns = [
-    url(r'^members$', views.export_members),
-    url(r'^mega/avecremarques$', views.export_mega_remarksonly),
-    url(r'^mega/participants$', views.export_mega_participants),
-    url(r'^mega/orgas$', views.export_mega_orgas),
+    url(r'^members$', views.export_members,
+        name='cof.membres_export'),
+    url(r'^mega/avecremarques$', views.export_mega_remarksonly,
+        name='cof.mega_export_remarks'),
+    url(r'^mega/participants$', views.export_mega_participants,
+        name='cof.mega_export_participants'),
+    url(r'^mega/orgas$', views.export_mega_orgas,
+        name='cof.mega_export_orgas'),
     # url(r'^mega/(?P<type>.+)$', views.export_mega_bytype),
-    url(r'^mega$', views.export_mega),
+    url(r'^mega$', views.export_mega,
+        name='cof.mega_export'),
 ]
 
 petitcours_patterns = [

From bd89dce11d72f6ecf86501cfaf920dac646c6914 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Aur=C3=A9lien=20Delobelle?= <aurelien.delobelle@gmail.com>
Date: Mon, 22 Jan 2018 21:38:01 +0100
Subject: [PATCH 085/101] Add testing helpers to create superuser

---
 gestioncof/tests/utils.py | 12 +++++++++++-
 1 file changed, 11 insertions(+), 1 deletion(-)

diff --git a/gestioncof/tests/utils.py b/gestioncof/tests/utils.py
index 8d55680a..7ba361b7 100644
--- a/gestioncof/tests/utils.py
+++ b/gestioncof/tests/utils.py
@@ -9,7 +9,9 @@ def _create_user(username, is_cof=False, is_staff=False, attrs=None):
 
     password = attrs.pop('password', username)
 
-    user_keys = ['first_name', 'last_name', 'email', 'is_staff']
+    user_keys = [
+        'first_name', 'last_name', 'email', 'is_staff', 'is_superuser',
+    ]
     user_attrs = {k: v for k, v in attrs.items() if k in user_keys}
 
     profile_keys = [
@@ -49,3 +51,11 @@ def create_member(username, attrs=None):
 
 def create_staff(username, attrs=None):
     return _create_user(username, is_cof=True, is_staff=True, attrs=attrs)
+
+
+def create_root(username, attrs=None):
+    if attrs is None:
+        attrs = {}
+    attrs.setdefault('is_staff', True)
+    attrs.setdefault('is_superuser', True)
+    return _create_user(username, attrs=attrs)

From 91162addb95fcafbf555288cc7fdeafa6f910b4c Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Aur=C3=A9lien=20Delobelle?= <aurelien.delobelle@gmail.com>
Date: Mon, 22 Jan 2018 21:41:02 +0100
Subject: [PATCH 086/101] cof -- Add tests for some views

---
 gestioncof/tests/test_views.py | 131 +++++++++++++++++++++++++++++++++
 gestioncof/views.py            |   1 +
 2 files changed, 132 insertions(+)
 create mode 100644 gestioncof/tests/test_views.py

diff --git a/gestioncof/tests/test_views.py b/gestioncof/tests/test_views.py
new file mode 100644
index 00000000..9f13fb36
--- /dev/null
+++ b/gestioncof/tests/test_views.py
@@ -0,0 +1,131 @@
+from django.contrib import messages
+from django.contrib.messages.api import get_messages
+from django.contrib.messages.storage.base import Message
+from django.test import TestCase
+from django.urls import reverse
+
+from gestioncof.tests.testcases import ViewTestCaseMixin
+
+from .utils import create_member, create_root, create_user
+
+
+class HomeViewTests(ViewTestCaseMixin, TestCase):
+    url_name = 'home'
+    url_expected = '/'
+
+    auth_user = 'user'
+    auth_forbidden = [None]
+
+    def test(self):
+        r = self.client.get(self.url)
+        self.assertEqual(r.status_code, 200)
+
+
+class ProfileViewTests(ViewTestCaseMixin, TestCase):
+    url_name = 'profile'
+    url_expected = '/profile'
+
+    http_methods = ['GET', 'POST']
+
+    auth_user = 'member'
+    auth_forbidden = [None, 'user']
+
+    def test_get(self):
+        r = self.client.get(self.url)
+        self.assertEqual(r.status_code, 200)
+
+    def test_post(self):
+        u = self.users['member']
+
+        r = self.client.post(self.url, {
+            'first_name': 'First',
+            'last_name': 'Last',
+            'phone': '',
+            # 'mailing_cof': '1',
+            # 'mailing_bda': '1',
+            # 'mailing_bda_revente': '1',
+        })
+
+        self.assertEqual(r.status_code, 200)
+        expected_message = Message(messages.SUCCESS, (
+            "Votre profil a été mis à jour avec succès !"
+        ))
+        self.assertIn(expected_message, get_messages(r.wsgi_request))
+        u.refresh_from_db()
+        self.assertEqual(u.first_name, 'First')
+        self.assertEqual(u.last_name, 'Last')
+        self.assertFalse(u.profile.mailing_cof)
+        self.assertFalse(u.profile.mailing_bda)
+        self.assertFalse(u.profile.mailing_bda_revente)
+
+
+class UtilsViewTests(ViewTestCaseMixin, TestCase):
+    url_name = 'utile_cof'
+    url_expected = '/utile_cof'
+
+    auth_user = 'staff'
+    auth_forbidden = [None, 'user', 'member']
+
+    def test(self):
+        r = self.client.get(self.url)
+        self.assertEqual(r.status_code, 200)
+
+
+class MailingListDiffCof(ViewTestCaseMixin, TestCase):
+    url_name = 'gestioncof.views.liste_diffcof'
+    url_expected = '/utile_cof/diff_cof'
+
+    auth_user = 'staff'
+    auth_forbidden = [None, 'user', 'member']
+
+    def setUp(self):
+        super().setUp()
+
+        self.u1 = create_member('u1', attrs={'mailing_cof': True})
+        self.u2 = create_member('u2', attrs={'mailing_cof': False})
+        self.u3 = create_user('u3', attrs={'mailing_cof': True})
+
+    def test(self):
+        r = self.client.get(self.url)
+
+        self.assertEqual(r.status_code, 200)
+        self.assertEqual(r.context['personnes'].get(), self.u1.profile)
+
+
+class ConfigUpdateViewTests(ViewTestCaseMixin, TestCase):
+    url_name = 'config.edit'
+    url_expected = '/config'
+
+    http_methods = ['GET', 'POST']
+
+    auth_user = 'root'
+    auth_forbidden = [None, 'user', 'member', 'staff']
+
+    def get_users_extra(self):
+        return {
+            'root': create_root('root'),
+        }
+
+    def test_get(self):
+        r = self.client.get(self.url)
+        self.assertEqual(r.status_code, 200)
+
+    def test_post(self):
+        r = self.client.post(self.url, {
+            'gestion_banner': 'Announcement !',
+        })
+
+        self.assertRedirects(r, reverse('home'))
+
+
+class UserAutocompleteViewTests(ViewTestCaseMixin, TestCase):
+    url_name = 'cof-user-autocomplete'
+    url_expected = '/user/autocomplete'
+
+    auth_user = 'staff'
+    auth_forbidden = [None, 'user', 'member']
+
+    def test(self):
+        r = self.client.get(self.url, {'q': 'user'})
+
+        self.assertEqual(r.status_code, 200)
diff --git a/gestioncof/views.py b/gestioncof/views.py
index 5dfee83f..2039bb65 100644
--- a/gestioncof/views.py
+++ b/gestioncof/views.py
@@ -9,6 +9,7 @@ from django.http import Http404, HttpResponse, HttpResponseForbidden
 from django.contrib.auth.decorators import login_required
 from django.contrib.auth.views import (
     login as django_login_view, logout as django_logout_view,
+    redirect_to_login,
 )
 from django.contrib.auth.models import User
 from django.contrib.sites.models import Site

From 0876a004e55a04cf638903a2aa423e608a3654bf Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Aur=C3=A9lien=20Delobelle?= <aurelien.delobelle@gmail.com>
Date: Mon, 22 Jan 2018 14:59:57 +0100
Subject: [PATCH 087/101] Name urls of export views (cof members, mega)

---
 gestioncof/templates/gestioncof/utile_cof.html |  8 ++++----
 gestioncof/urls.py                             | 15 ++++++++++-----
 2 files changed, 14 insertions(+), 9 deletions(-)

diff --git a/gestioncof/templates/gestioncof/utile_cof.html b/gestioncof/templates/gestioncof/utile_cof.html
index ae024949..8cea33df 100644
--- a/gestioncof/templates/gestioncof/utile_cof.html
+++ b/gestioncof/templates/gestioncof/utile_cof.html
@@ -7,15 +7,15 @@
                 <h2>Liens utiles du COF</h2>
                 <h3>COF</h3>
                 <ul>
-                <li><a href="{% url 'gestioncof.views.export_members' %}">Export des membres du COF</a></li>
+                <li><a href="{% url 'cof.membres_export' %}">Export des membres du COF</a></li>
                 <li><a href="{% url 'gestioncof.views.liste_diffcof' %}">Diffusion COF</a></li> 
                 </ul>
 
                 <h3>Mega</h3>
                 <ul>
-                <li><a href="{% url 'gestioncof.views.export_mega_participants' %}">Export des non-orgas uniquement</a></li>
-		  <li><a href="{% url 'gestioncof.views.export_mega_orgas' %}">Export des orgas uniquement</a></li>
-		  <li><a href="{% url 'gestioncof.views.export_mega' %}">Export de tout le monde</a></li>
+                <li><a href="{% url 'cof.mega_export_participants' %}">Export des non-orgas uniquement</a></li>
+		  <li><a href="{% url 'cof.mega_export_orgas' %}">Export des orgas uniquement</a></li>
+		  <li><a href="{% url 'cof.mega_export' %}">Export de tout le monde</a></li>
                 </ul>
 
                 <p>Note&nbsp;: pour ouvrir les fichiers .csv avec Excel, il faut
diff --git a/gestioncof/urls.py b/gestioncof/urls.py
index 2be609b3..ef3b4190 100644
--- a/gestioncof/urls.py
+++ b/gestioncof/urls.py
@@ -6,12 +6,17 @@ from gestioncof import views, petits_cours_views
 from gestioncof.decorators import buro_required
 
 export_patterns = [
-    url(r'^members$', views.export_members),
-    url(r'^mega/avecremarques$', views.export_mega_remarksonly),
-    url(r'^mega/participants$', views.export_mega_participants),
-    url(r'^mega/orgas$', views.export_mega_orgas),
+    url(r'^members$', views.export_members,
+        name='cof.membres_export'),
+    url(r'^mega/avecremarques$', views.export_mega_remarksonly,
+        name='cof.mega_export_remarks'),
+    url(r'^mega/participants$', views.export_mega_participants,
+        name='cof.mega_export_participants'),
+    url(r'^mega/orgas$', views.export_mega_orgas,
+        name='cof.mega_export_orgas'),
     # url(r'^mega/(?P<type>.+)$', views.export_mega_bytype),
-    url(r'^mega$', views.export_mega),
+    url(r'^mega$', views.export_mega,
+        name='cof.mega_export'),
 ]
 
 petitcours_patterns = [

From f8361b9114700facc4ebfcaa79d024be49496193 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Aur=C3=A9lien=20Delobelle?= <aurelien.delobelle@gmail.com>
Date: Mon, 22 Jan 2018 21:53:19 +0100
Subject: [PATCH 088/101] Add & fix urls naming

---
 cof/urls.py                                    | 6 ++++--
 gestioncof/templates/gestioncof/profile.html   | 2 +-
 gestioncof/templates/gestioncof/utile_cof.html | 2 +-
 gestioncof/tests/test_views.py                 | 2 +-
 4 files changed, 7 insertions(+), 5 deletions(-)

diff --git a/cof/urls.py b/cof/urls.py
index e6e5d313..33d4fbc6 100644
--- a/cof/urls.py
+++ b/cof/urls.py
@@ -86,13 +86,15 @@ urlpatterns = [
     url(r'^utile_bda$', gestioncof_views.utile_bda,
         name='utile_bda'),
     url(r'^utile_bda/bda_diff$', gestioncof_views.liste_bdadiff),
-    url(r'^utile_cof/diff_cof$', gestioncof_views.liste_diffcof),
+    url(r'^utile_cof/diff_cof$', gestioncof_views.liste_diffcof,
+        name='ml_diffcof'),
     url(r'^utile_bda/bda_revente$', gestioncof_views.liste_bdarevente),
     url(r'^k-fet/', include('kfet.urls')),
     url(r'^cms/', include(wagtailadmin_urls)),
     url(r'^documents/', include(wagtaildocs_urls)),
     # djconfig
-    url(r"^config", gestioncof_views.ConfigUpdate.as_view()),
+    url(r"^config", gestioncof_views.ConfigUpdate.as_view(),
+        name='config.edit'),
 ]
 
 if 'debug_toolbar' in settings.INSTALLED_APPS:
diff --git a/gestioncof/templates/gestioncof/profile.html b/gestioncof/templates/gestioncof/profile.html
index 59358239..5decdfb3 100644
--- a/gestioncof/templates/gestioncof/profile.html
+++ b/gestioncof/templates/gestioncof/profile.html
@@ -5,7 +5,7 @@
 
 {% block realcontent %}
                 <h2>Modifier mon profil</h2>
-                <form id="profile form-horizontal"  method="post" action="{% url 'gestioncof.views.profile' %}">
+                <form id="profile form-horizontal"  method="post" action="{% url 'profile' %}">
                     <div class="row" style="margin: 0 15%;">
                             {% csrf_token %}
                             <fieldset"center-block">
diff --git a/gestioncof/templates/gestioncof/utile_cof.html b/gestioncof/templates/gestioncof/utile_cof.html
index 8cea33df..637055c5 100644
--- a/gestioncof/templates/gestioncof/utile_cof.html
+++ b/gestioncof/templates/gestioncof/utile_cof.html
@@ -8,7 +8,7 @@
                 <h3>COF</h3>
                 <ul>
                 <li><a href="{% url 'cof.membres_export' %}">Export des membres du COF</a></li>
-                <li><a href="{% url 'gestioncof.views.liste_diffcof' %}">Diffusion COF</a></li> 
+                <li><a href="{% url 'ml_diffcof' %}">Diffusion COF</a></li>
                 </ul>
 
                 <h3>Mega</h3>
diff --git a/gestioncof/tests/test_views.py b/gestioncof/tests/test_views.py
index 9f13fb36..6f8e95c1 100644
--- a/gestioncof/tests/test_views.py
+++ b/gestioncof/tests/test_views.py
@@ -72,7 +72,7 @@ class UtilsViewTests(ViewTestCaseMixin, TestCase):
 
 
 class MailingListDiffCof(ViewTestCaseMixin, TestCase):
-    url_name = 'gestioncof.views.liste_diffcof'
+    url_name = 'ml_diffcof'
     url_expected = '/utile_cof/diff_cof'
 
     auth_user = 'staff'

From 0235c4f7e8e4d04961419e17fd745384294629d3 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Aur=C3=A9lien=20Delobelle?= <aurelien.delobelle@gmail.com>
Date: Mon, 22 Jan 2018 21:54:41 +0100
Subject: [PATCH 089/101] Fix profile edition view

- Fix a typo.
- Bump version of django-bootstrap-form to be comaptible with Django
1.11.
---
 gestioncof/views.py | 2 +-
 requirements.txt    | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/gestioncof/views.py b/gestioncof/views.py
index 2039bb65..6a2582e2 100644
--- a/gestioncof/views.py
+++ b/gestioncof/views.py
@@ -339,7 +339,7 @@ def profile(request):
         if form.is_valid():
             form.save()
             messages.success(request,
-                             "Votre profil a été mis à jour avec  succès !")
+                             "Votre profil a été mis à jour avec succès !")
     else:
         form = UserProfileForm(instance=request.user.profile)
     return render(request, "gestioncof/profile.html", {"form": form})
diff --git a/requirements.txt b/requirements.txt
index d1046042..b30660ee 100644
--- a/requirements.txt
+++ b/requirements.txt
@@ -11,7 +11,7 @@ psycopg2
 Pillow
 six
 unicodecsv
-django-bootstrap-form==3.2.1
+django-bootstrap-form==3.3
 asgiref==1.1.1
 daphne==1.3.0
 asgi-redis==1.3.0

From afa6972280fa560402e884f165193fda955f12f4 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Aur=C3=A9lien=20Delobelle?= <aurelien.delobelle@gmail.com>
Date: Mon, 22 Jan 2018 21:59:07 +0100
Subject: [PATCH 090/101] Better handling of non-authorized users in config
 edition view

---
 gestioncof/views.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/gestioncof/views.py b/gestioncof/views.py
index 6a2582e2..2f6fd518 100644
--- a/gestioncof/views.py
+++ b/gestioncof/views.py
@@ -783,7 +783,7 @@ class ConfigUpdate(FormView):
 
     def dispatch(self, request, *args, **kwargs):
         if request.user is None or not request.user.is_superuser:
-            raise Http404
+            return redirect_to_login(request.get_full_path())
         return super().dispatch(request, *args, **kwargs)
 
     def form_valid(self, form):

From ac1a57d96993466d38a2e87edcbcd1e5501b8c54 Mon Sep 17 00:00:00 2001
From: Basile Clement <basile@clement.pm>
Date: Sun, 11 Feb 2018 17:01:26 +0100
Subject: [PATCH 091/101] Make provisioning script stop immediately on errors

By default, bash will ignore any failing commands and happily proceed to
execute the next ones. This is usually not the behavior the we want in
provisioning script (or ever in scripts, actually): if one step of the
provisioning fails, it doesn't make much sense to proceed with the
following ones.

This simple patch uses `set -e` to ask bash to abort the whole script if
any command within it fails, leading to outputs that are easier to parse
since the commands following a failing one will usually fail also,
hiding the root cause.
---
 provisioning/bootstrap.sh      | 3 +++
 provisioning/prepare_django.sh | 3 +++
 2 files changed, 6 insertions(+)

diff --git a/provisioning/bootstrap.sh b/provisioning/bootstrap.sh
index 69bbcf4c..cb6917a7 100644
--- a/provisioning/bootstrap.sh
+++ b/provisioning/bootstrap.sh
@@ -1,5 +1,8 @@
 #!/bin/sh
 
+# Stop if an error is encountered
+set -e
+
 # Configuration de la base de données. Le mot de passe est constant car c'est
 # pour une installation de dév locale qui ne sera accessible que depuis la
 # machine virtuelle.
diff --git a/provisioning/prepare_django.sh b/provisioning/prepare_django.sh
index 1818a0cd..891108e8 100644
--- a/provisioning/prepare_django.sh
+++ b/provisioning/prepare_django.sh
@@ -1,5 +1,8 @@
 #!/bin/bash
 
+# Stop if an error is encountered.
+set -e
+
 python manage.py migrate
 python manage.py loaddata gestion sites articles
 python manage.py loaddevdata

From 3314670cab2917f3d57e3340c56a7a5daddd92c8 Mon Sep 17 00:00:00 2001
From: Basile Clement <basile@clement.pm>
Date: Sun, 11 Feb 2018 19:09:07 +0100
Subject: [PATCH 092/101] Various fixes for Django 1.11

 - The {% cycle %} command was used non-quoted arguments separated by
   commas, while it is supposed to use quoted arguments separated by
   spaces (I'm actually not sure how that ever worked :)

 - django-bootstrap-form was at version 3.2.1 which is not compatible
   with Django 1.11 (but also required by GestioCOF). I upgraded it to
   version 3.3.
---
 bda/templates/bda/inscription-formset.html                | 2 +-
 gestioncof/templates/inscription-petit-cours-formset.html | 2 +-
 requirements.txt                                          | 2 +-
 3 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/bda/templates/bda/inscription-formset.html b/bda/templates/bda/inscription-formset.html
index 65ef389b..88b65600 100644
--- a/bda/templates/bda/inscription-formset.html
+++ b/bda/templates/bda/inscription-formset.html
@@ -14,7 +14,7 @@
   </tr></thead>
    <tbody class="bda_formset_content">
   {% endif %}
-    <tr class="{% cycle row1,row2 %} dynamic-form {% if form.instance.pk %}has_original{% endif %}">
+    <tr class="{% cycle 'row1' 'row2' %} dynamic-form {% if form.instance.pk %}has_original{% endif %}">
     {% for field in form.visible_fields %}
       {% if field.name != "DELETE" and field.name != "priority" %}
       <td class="bda-field-{{ field.name }}">
diff --git a/gestioncof/templates/inscription-petit-cours-formset.html b/gestioncof/templates/inscription-petit-cours-formset.html
index ec8979f5..40311772 100644
--- a/gestioncof/templates/inscription-petit-cours-formset.html
+++ b/gestioncof/templates/inscription-petit-cours-formset.html
@@ -16,7 +16,7 @@
   </tr></thead>
    <tbody class="bda_formset_content">
   {% endif %}
-    <tr class="{% cycle row1,row2 %} dynamic-form {% if form.instance.pk %}has_original{% endif %}">
+    <tr class="{% cycle 'row1' 'row2' %} dynamic-form {% if form.instance.pk %}has_original{% endif %}">
     {% for field in form.visible_fields %}
       {% if field.name != "DELETE" and field.name != "priority" %}
       <td class="bda-field-{{ field.name }}">
diff --git a/requirements.txt b/requirements.txt
index d1046042..b30660ee 100644
--- a/requirements.txt
+++ b/requirements.txt
@@ -11,7 +11,7 @@ psycopg2
 Pillow
 six
 unicodecsv
-django-bootstrap-form==3.2.1
+django-bootstrap-form==3.3
 asgiref==1.1.1
 daphne==1.3.0
 asgi-redis==1.3.0

From 6ecc9a54b36d153dea502057531dd5b6bb7ea8cc Mon Sep 17 00:00:00 2001
From: Basile Clement <basile@clement.pm>
Date: Sun, 11 Feb 2018 19:24:01 +0100
Subject: [PATCH 093/101] Properly propagate the default number of places in
 tirage

Fixes #182.
---
 bda/templates/bda/inscription-tirage.html | 8 ++++++++
 1 file changed, 8 insertions(+)

diff --git a/bda/templates/bda/inscription-tirage.html b/bda/templates/bda/inscription-tirage.html
index d56b4229..3fd81378 100644
--- a/bda/templates/bda/inscription-tirage.html
+++ b/bda/templates/bda/inscription-tirage.html
@@ -27,6 +27,14 @@ var django = {
             var newFor = $(this).attr('for').replace('-' + (total-1) + '-','-' + total + '-');
             $(this).attr('for', newFor);
         });
+        // Cloning <select> element doesn't properly propagate the default
+        // selected <option>, so we set it manually.
+        newElement.find('select').each(function (index, select) {
+            var defaultValue = $(select).find('option[selected]').val();
+            if (typeof defaultValue !== 'undefined') {
+                $(select).val(defaultValue);
+            }
+        });
         total++;
         $('#id_' + type + '-TOTAL_FORMS').val(total);
         $(selector).after(newElement);

From cc27e4d96427c0cf69d6b58f7b68109d08856c4f Mon Sep 17 00:00:00 2001
From: Qwann <narmanli@clipper.ens.fr>
Date: Thu, 22 Mar 2018 15:25:03 +0100
Subject: [PATCH 094/101] show not sold article in a different list

---
 kfet/templates/kfet/article.html | 46 ++++++++++++++++++++++++++++++--
 kfet/views.py                    |  8 ++++++
 2 files changed, 52 insertions(+), 2 deletions(-)

diff --git a/kfet/templates/kfet/article.html b/kfet/templates/kfet/article.html
index 7966e797..8cec4279 100644
--- a/kfet/templates/kfet/article.html
+++ b/kfet/templates/kfet/article.html
@@ -7,8 +7,11 @@
 
 <aside>
   <div class="heading">
-    {{ articles|length }}
-    <span class="sub">article{{ articles|length|pluralize }}</span>
+    {{ nb_articles }}
+    <span class="sub">article{{ nb_articles|pluralize }}</span>
+  </div>
+  <div class="heading">
+    <span class="sub">dont {{ articles|length }} en vente</span>
   </div>
 </aside>
 
@@ -25,6 +28,7 @@
 {% endblock %}
 
 {% block main %}
+<h2>Article{{ articles|length|pluralize}} en vente</h2>
 <div class="table-responsive">
   <table class="table table-hover table-condensed">
     <thead>
@@ -60,6 +64,44 @@
     </tbody>
   </table>
 </div>
+
+<h2>Articles non vendus</h2>
+<h2>Article{{ not_sold_articles|length|pluralize }} non vendu{{ nots_sold_article|length|pluralize }}</h2>
+<div class="table-responsive">
+  <table class="table table-hover table-condensed">
+    <thead>
+      <tr>
+        <td>Nom</td>
+        <td class="text-right">Prix</td>
+        <td class="text-right">Stock</td>
+        <td class="text-right">En vente</td>
+        <td class="text-right">Affiché</td>
+        <td class="text-right">Dernier inventaire</td>
+      </tr>
+    </thead>
+    <tbody>
+      {% for article in not_sold_articles %}
+      {% ifchanged article.category %}
+      <tr class="section">
+        <td colspan="6">{{ article.category.name }}</td>
+      </tr>
+      {% endifchanged %}
+      <tr>
+        <td>
+          <a href="{% url 'kfet.article.read' article.pk %}">
+            {{ article.name }}
+          </a>
+        </td>
+        <td class="text-right">{{ article.price }}€</td>
+        <td class="text-right">{{ article.stock }}</td>
+        <td class="text-right">{{ article.is_sold | yesno:"En vente,Non vendu"}}</td>
+        <td class="text-right">{{ article.hidden | yesno:"Caché,Affiché" }}</td>
+        <td class="text-right">{{ article.inventory.0.at }}</td>
+      </tr>
+      {% endfor %}
+    </tbody>
+  </table>
+</div>
 </div>
 
 {% endblock %}
diff --git a/kfet/views.py b/kfet/views.py
index 2b69684d..63bd280c 100644
--- a/kfet/views.py
+++ b/kfet/views.py
@@ -706,6 +706,14 @@ class ArticleList(ListView):
     )
     template_name = 'kfet/article.html'
     context_object_name = 'articles'
+    
+    def get_context_data(self, **kwargs):
+        context = super().get_context_data(**kwargs)
+        articles = context[self.context_object_name]
+        context['nb_articles'] = len(articles)
+        context[self.context_object_name] = articles.filter(is_sold=True)
+        context['not_sold_articles'] = articles.filter(is_sold=False)
+        return context
 
 
 # Article - Create

From 35e17a81a6e2e91f22facc5ca9df6a0a56a8f67a Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Martin=20P=C3=A9pin?= <martin.pepin@ens.fr>
Date: Thu, 5 Apr 2018 23:48:53 +0200
Subject: [PATCH 095/101] New year -> new promo -> migration in k-fet

---
 kfet/migrations/0063_promo.py | 20 ++++++++++++++++++++
 1 file changed, 20 insertions(+)
 create mode 100644 kfet/migrations/0063_promo.py

diff --git a/kfet/migrations/0063_promo.py b/kfet/migrations/0063_promo.py
new file mode 100644
index 00000000..3fac5a8a
--- /dev/null
+++ b/kfet/migrations/0063_promo.py
@@ -0,0 +1,20 @@
+# -*- coding: utf-8 -*-
+# Generated by Django 1.11.12 on 2018-04-05 21:47
+from __future__ import unicode_literals
+
+from django.db import migrations, models
+
+
+class Migration(migrations.Migration):
+
+    dependencies = [
+        ('kfet', '0062_delete_globalpermissions'),
+    ]
+
+    operations = [
+        migrations.AlterField(
+            model_name='account',
+            name='promo',
+            field=models.IntegerField(blank=True, choices=[(1980, 1980), (1981, 1981), (1982, 1982), (1983, 1983), (1984, 1984), (1985, 1985), (1986, 1986), (1987, 1987), (1988, 1988), (1989, 1989), (1990, 1990), (1991, 1991), (1992, 1992), (1993, 1993), (1994, 1994), (1995, 1995), (1996, 1996), (1997, 1997), (1998, 1998), (1999, 1999), (2000, 2000), (2001, 2001), (2002, 2002), (2003, 2003), (2004, 2004), (2005, 2005), (2006, 2006), (2007, 2007), (2008, 2008), (2009, 2009), (2010, 2010), (2011, 2011), (2012, 2012), (2013, 2013), (2014, 2014), (2015, 2015), (2016, 2016), (2017, 2017), (2018, 2018)], default=2017, null=True),
+        ),
+    ]

From 623047dca2dabb3e8eec9e5b97ef30f8c64caf85 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Martin=20P=C3=A9pin?= <kerl@wkerl.me>
Date: Fri, 6 Apr 2018 11:11:02 +0200
Subject: [PATCH 096/101] Fix old-style reversal of calendar urls

---
 bda/templates/bda/resume_places.html                       | 2 +-
 gestioncof/templates/gestioncof/calendar_subscription.html | 2 +-
 gestioncof/urls.py                                         | 4 +++-
 3 files changed, 5 insertions(+), 3 deletions(-)

diff --git a/bda/templates/bda/resume_places.html b/bda/templates/bda/resume_places.html
index 3785169b..7cbd06ea 100644
--- a/bda/templates/bda/resume_places.html
+++ b/bda/templates/bda/resume_places.html
@@ -16,7 +16,7 @@
     <h4 class="bda-prix">Total à payer : {{ total|floatformat }}€</h4>
     <br/>
     <p>Ne manque pas un spectacle avec le
-	    <a href="{% url "gestioncof.views.calendar" %}">calendrier
+	    <a href="{% url "calendar" %}">calendrier
 	    automatique&#8239;!</a></p>
     {% else %}
     <h3>Vous n'avez aucune place :(</h3>
diff --git a/gestioncof/templates/gestioncof/calendar_subscription.html b/gestioncof/templates/gestioncof/calendar_subscription.html
index b13cb7f2..345312e3 100644
--- a/gestioncof/templates/gestioncof/calendar_subscription.html
+++ b/gestioncof/templates/gestioncof/calendar_subscription.html
@@ -12,7 +12,7 @@ souscrire aux événements du COF et/ou aux spectacles BdA.
 
 {% if token %}
 <p>Votre calendrier (compatible avec toutes les applications d'agenda) se trouve à
-<a href="{% url 'gestioncof.views.calendar_ics' token %}">cette adresse</a>.</p>
+<a href="{% url 'calendar_ics' token %}">cette adresse</a>.</p>
 
 <ul>
     <li>Pour l'ajouter à Thunderbird (lightning), il faut copier ce lien et aller
diff --git a/gestioncof/urls.py b/gestioncof/urls.py
index 2be609b3..1a66dd57 100644
--- a/gestioncof/urls.py
+++ b/gestioncof/urls.py
@@ -52,7 +52,9 @@ events_patterns = [
 calendar_patterns = [
     url(r'^subscription$', views.calendar,
         name='calendar'),
-    url(r'^(?P<token>[a-z0-9-]+)/calendar.ics$', views.calendar_ics)
+    url(r'^(?P<token>[a-z0-9-]+)/calendar.ics$',
+        views.calendar_ics,
+        name="calendar_ics")
 ]
 
 clubs_patterns = [

From 6328cdaa1965a6ebf0e5381b157a30f5354dfbfe Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Martin=20P=C3=A9pin?= <martin.pepin@ens.fr>
Date: Sat, 7 Apr 2018 12:05:16 +0200
Subject: [PATCH 097/101] Tests: the order of our csv files is not relevant

---
 gestioncof/tests/test_views.py | 9 +++++++--
 1 file changed, 7 insertions(+), 2 deletions(-)

diff --git a/gestioncof/tests/test_views.py b/gestioncof/tests/test_views.py
index 1425353e..3b4a832b 100644
--- a/gestioncof/tests/test_views.py
+++ b/gestioncof/tests/test_views.py
@@ -38,13 +38,18 @@ class ExportMembersViewTests(ViewTestCaseMixin, TestCase):
 
         self.assertEqual(r.status_code, 200)
         data = list(csv.reader(r.content.decode('utf-8').split('\n')[:-1]))
-        self.assertListEqual(data, [
+        expected = [
             [
                 str(u1.pk), 'member', 'first', 'last', 'user@mail.net',
                 '0123456789', '1A', 'Dept', 'normalien',
             ],
             [str(u2.pk), 'staff', '', '', '', '', '1A', '', 'normalien'],
-        ])
+        ]
+        # Sort before checking equality, the order of the output of csv.reader
+        # does not seem deterministic
+        expected.sort(key=lambda row: int(row[0]))
+        data.sort(key=lambda row: int(row[0]))
+        self.assertListEqual(data, expected)
 
 
 class MegaHelpers:

From 3463017d597f01df11df81e2c2fc653cf1a8e26d Mon Sep 17 00:00:00 2001
From: Martin Pepin <mpepin@clipper.ens.fr>
Date: Sat, 7 Apr 2018 12:54:50 +0200
Subject: [PATCH 098/101] build status in README.me

---
 README.md | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/README.md b/README.md
index 01f4ead2..b9d736ae 100644
--- a/README.md
+++ b/README.md
@@ -1,5 +1,7 @@
 # GestioCOF
 
+![build_status](https://git.eleves.ens.fr/cof-geek/gestioCOF/badges/master/build.svg)
+
 ## Installation
 
 ### Vagrant

From 71b4e6253da3abc8126b433f86ca54fe47081693 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Martin=20P=C3=A9pin?= <martin.pepin@ens.fr>
Date: Sat, 7 Apr 2018 13:42:19 +0200
Subject: [PATCH 099/101] Merge branch 'master' into
 aureplop/cof-tests_calendar

---
 kfet/templates/kfet/account.html                     | 2 +-
 kfet/templates/kfet/account_negative.html            | 2 +-
 kfet/templates/kfet/article.html                     | 2 +-
 kfet/templates/kfet/article_inventories_snippet.html | 2 +-
 kfet/templates/kfet/article_suppliers_snippet.html   | 2 +-
 kfet/templates/kfet/category.html                    | 2 +-
 kfet/templates/kfet/checkout.html                    | 2 +-
 kfet/templates/kfet/checkout_read.html               | 2 +-
 kfet/templates/kfet/inventory.html                   | 2 +-
 kfet/templates/kfet/inventory_read.html              | 2 +-
 kfet/templates/kfet/order.html                       | 2 +-
 kfet/templates/kfet/order_create.html                | 2 +-
 kfet/templates/kfet/order_read.html                  | 2 +-
 13 files changed, 13 insertions(+), 13 deletions(-)

diff --git a/kfet/templates/kfet/account.html b/kfet/templates/kfet/account.html
index a1a1f6bb..9b63c1da 100644
--- a/kfet/templates/kfet/account.html
+++ b/kfet/templates/kfet/account.html
@@ -39,7 +39,7 @@
   <div class="table-responsive">
     <table
         class="table table-hover table-condensed sortable"
-        // Initial sort: [(trigramme,asc)]
+        {# Initial sort: [(trigramme,asc)] #}
         data-sortlist="[[0,0]]">
       <thead>
         <tr>
diff --git a/kfet/templates/kfet/account_negative.html b/kfet/templates/kfet/account_negative.html
index b67b94fc..fa8b508d 100644
--- a/kfet/templates/kfet/account_negative.html
+++ b/kfet/templates/kfet/account_negative.html
@@ -37,7 +37,7 @@
 <div class="table-responsive">
   <table
       class="table table-hover table-condensed sortable"
-      // Initial sort: [(trigramme,asc)]
+      {# Initial sort: [(trigramme,asc)] #}
       data-sortlist="[[0,0]]">
     <thead>
       <tr>
diff --git a/kfet/templates/kfet/article.html b/kfet/templates/kfet/article.html
index caf70cfa..87a8b76a 100644
--- a/kfet/templates/kfet/article.html
+++ b/kfet/templates/kfet/article.html
@@ -28,7 +28,7 @@
 <div class="table-responsive">
   <table
       class="table table-hover table-condensed sortable"
-      // Initial sort: [(is_sold,desc), (name,asc)]
+      {# Initial sort: [(is_sold,desc), (name,asc)] #}
       data-sortlist="[[3,1], [0,0]]">
     <thead>
       <tr>
diff --git a/kfet/templates/kfet/article_inventories_snippet.html b/kfet/templates/kfet/article_inventories_snippet.html
index df5c8dea..6a368ab1 100644
--- a/kfet/templates/kfet/article_inventories_snippet.html
+++ b/kfet/templates/kfet/article_inventories_snippet.html
@@ -1,6 +1,6 @@
 <table
     class="table table-hover table-condensed sortable"
-    // Initial sort: [(inventory.at,desc)]
+    {# Initial sort: [(inventory.at,desc)] #}
     data-sortlist="[[0,1]]">
   <thead>
     <tr>
diff --git a/kfet/templates/kfet/article_suppliers_snippet.html b/kfet/templates/kfet/article_suppliers_snippet.html
index 84922035..f82a313d 100644
--- a/kfet/templates/kfet/article_suppliers_snippet.html
+++ b/kfet/templates/kfet/article_suppliers_snippet.html
@@ -1,6 +1,6 @@
 <table
     class="table table-hover table-condensed sortable"
-    // Initial sort: [(at,desc)]
+    {# Initial sort: [(at,desc)] #}
     data-sortlist="[[0,1]]">
   <thead>
     <tr>
diff --git a/kfet/templates/kfet/category.html b/kfet/templates/kfet/category.html
index a31cc3cf..0a8b58be 100644
--- a/kfet/templates/kfet/category.html
+++ b/kfet/templates/kfet/category.html
@@ -19,7 +19,7 @@
 <div class="table-responsive">
   <table
       class="table table-hover table-condensed sortable"
-      // Initial sort: [(name,asc)]
+      {# Initial sort: [(name,asc)] #}
       data-sortlist="[[0,0]]">
     <thead>
       <tr>
diff --git a/kfet/templates/kfet/checkout.html b/kfet/templates/kfet/checkout.html
index c2c5e4bc..96ce0577 100644
--- a/kfet/templates/kfet/checkout.html
+++ b/kfet/templates/kfet/checkout.html
@@ -26,7 +26,7 @@
 <div class="table-responsive">
   <table
       class="table table-hover table-condensed sortable"
-      // Initial sort: [(valid_to,desc)]
+      {# Initial sort: [(valid_to,desc)] #}
       data-sortlist="[[3,1]]">
     <thead>
       <tr>
diff --git a/kfet/templates/kfet/checkout_read.html b/kfet/templates/kfet/checkout_read.html
index 37a6e173..acfd4462 100644
--- a/kfet/templates/kfet/checkout_read.html
+++ b/kfet/templates/kfet/checkout_read.html
@@ -16,7 +16,7 @@
     {% else %}
       <table
           class="table table-hover table-condensed sortable"
-          // Initial sort: [(at,desc)]
+          {# Initial sort: [(at,desc)] #}
           data-sortlist="[[0,1]]">
         <thead>
           <tr>
diff --git a/kfet/templates/kfet/inventory.html b/kfet/templates/kfet/inventory.html
index f05dc32a..bee373bc 100644
--- a/kfet/templates/kfet/inventory.html
+++ b/kfet/templates/kfet/inventory.html
@@ -19,7 +19,7 @@
 <div class="table-responsive">
   <table
       class="table table-hover table-condensed sortable"
-      // Initial sort: [(at,desc)]
+      {# Initial sort: [(at,desc)] #}
       data-sortlist="[[0,1]]">
     <thead>
       <tr>
diff --git a/kfet/templates/kfet/inventory_read.html b/kfet/templates/kfet/inventory_read.html
index 1edc21e0..964e81b0 100644
--- a/kfet/templates/kfet/inventory_read.html
+++ b/kfet/templates/kfet/inventory_read.html
@@ -29,7 +29,7 @@
 <div class="table-responsive">
   <table
       class="table table-condensed table-hover table-striped sortable"
-      // Initial sort: [(article.name,asc)]
+      {# Initial sort: [(article.name,asc)] #}
       data-sortlist="[[0,0]]">
     <thead>
       <tr>
diff --git a/kfet/templates/kfet/order.html b/kfet/templates/kfet/order.html
index 0e4ed868..37391b87 100644
--- a/kfet/templates/kfet/order.html
+++ b/kfet/templates/kfet/order.html
@@ -57,7 +57,7 @@
   <div class="table-responsive">
     <table
         class="table table-hover table-condensed sortable"
-        // Initial sort: [(at,desc)]
+        {# Initial sort: [(at,desc)] #}
         data-sortlist="[[1,1]]">
       <thead>
         <tr>
diff --git a/kfet/templates/kfet/order_create.html b/kfet/templates/kfet/order_create.html
index e2e7c4cd..7cb4d1cb 100644
--- a/kfet/templates/kfet/order_create.html
+++ b/kfet/templates/kfet/order_create.html
@@ -13,7 +13,7 @@
   <div class="table-responsive">
   <table
       class="table table-hover table-condensed table-condensed-input text-center table-striped sortable"
-      // Initial sort: [(name,asc)]
+      {# Initial sort: [(name,asc)] #}
       data-sortlist="[[0,0]]">
     <thead>
       <tr>
diff --git a/kfet/templates/kfet/order_read.html b/kfet/templates/kfet/order_read.html
index 9241c394..41abc381 100644
--- a/kfet/templates/kfet/order_read.html
+++ b/kfet/templates/kfet/order_read.html
@@ -44,7 +44,7 @@
   <div class="table-responsive">
     <table
         class="table table-condensed table-hover table-striped sortable"
-        // Initial sort: [(article.name,asc)]
+        {# Initial sort: [(article.name,asc)] #}
         data-sortlist="[[0,0]]">
       <thead>
         <tr>

From 158b19778b19daeba35413027ba30b518d1110a0 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Martin=20P=C3=A9pin?= <martin.pepin@ens.fr>
Date: Sat, 7 Apr 2018 14:20:41 +0200
Subject: [PATCH 100/101] also sort the unsold table

---
 kfet/templates/kfet/article.html | 61 +++++++++++++++++++-------------
 1 file changed, 36 insertions(+), 25 deletions(-)

diff --git a/kfet/templates/kfet/article.html b/kfet/templates/kfet/article.html
index 002abadd..b1f173c6 100644
--- a/kfet/templates/kfet/article.html
+++ b/kfet/templates/kfet/article.html
@@ -79,38 +79,49 @@
 <h2>Articles non vendus</h2>
 <h2>Article{{ not_sold_articles|length|pluralize }} non vendu{{ nots_sold_article|length|pluralize }}</h2>
 <div class="table-responsive">
-  <table class="table table-hover table-condensed">
+  <table
+      class="table table-hover table-condensed sortable"
+      {# Initial sort: [(is_sold,desc), (name,asc)] #}
+      data-sortlist="[[3,1], [0,0]]">
     <thead>
       <tr>
         <td>Nom</td>
         <td class="text-right">Prix</td>
         <td class="text-right">Stock</td>
-        <td class="text-right">En vente</td>
-        <td class="text-right">Affiché</td>
-        <td class="text-right">Dernier inventaire</td>
+        <td class="text-right" data-sorter="article__is_sold">En vente</td>
+        <td class="text-right" data-sorter="article__hidden">Affiché</td>
+        <td class="text-right" data-sorter="shortDate">Dernier inventaire</td>
       </tr>
     </thead>
-    <tbody>
-      {% for article in not_sold_articles %}
-      {% ifchanged article.category %}
-      <tr class="section">
-        <td colspan="6">{{ article.category.name }}</td>
-      </tr>
-      {% endifchanged %}
-      <tr>
-        <td>
-          <a href="{% url 'kfet.article.read' article.pk %}">
-            {{ article.name }}
-          </a>
-        </td>
-        <td class="text-right">{{ article.price }}€</td>
-        <td class="text-right">{{ article.stock }}</td>
-        <td class="text-right">{{ article.is_sold | yesno:"En vente,Non vendu"}}</td>
-        <td class="text-right">{{ article.hidden | yesno:"Caché,Affiché" }}</td>
-        <td class="text-right">{{ article.inventory.0.at }}</td>
-      </tr>
-      {% endfor %}
-    </tbody>
+    {% regroup not_sold_articles by category as not_sold_category_list %}
+
+    {% for category in not_sold_category_list %}
+      <tbody class="tablesorter-no-sort">
+        <tr class="section">
+          <td colspan="6">{{ category.grouper }}</td>
+        </tr>
+      </tbody>
+      <tbody>
+        {% for article in category.list %}
+          <tr>
+            <td>
+              <a href="{% url 'kfet.article.read' article.pk %}">
+                {{ article.name }}
+              </a>
+            </td>
+            <td class="text-right">{{ article.price }}€</td>
+            <td class="text-right">{{ article.stock }}</td>
+            <td class="text-right">{{ article.is_sold | yesno:"En vente,Non vendu"}}</td>
+            <td class="text-right">{{ article.hidden | yesno:"Caché,Affiché" }}</td>
+            {% with last_inventory=article.inventory.0 %}
+            <td class="text-right" title="{{ last_inventory.at }}">
+              {{ last_inventory.at|date:'d/m/Y H:i' }}
+            </td>
+            {% endwith %}
+          </tr>
+        {% endfor %}
+      </tbody>
+    {% endfor %}
   </table>
 </div>
 </div>

From 53a4c78903d6b09611aaa9eb10ee9d36a05d8cf2 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Martin=20P=C3=A9pin?= <martin.pepin@ens.fr>
Date: Sat, 7 Apr 2018 14:21:07 +0200
Subject: [PATCH 101/101] Remove duplicate line

---
 kfet/templates/kfet/article.html | 1 -
 1 file changed, 1 deletion(-)

diff --git a/kfet/templates/kfet/article.html b/kfet/templates/kfet/article.html
index b1f173c6..6b48ddbb 100644
--- a/kfet/templates/kfet/article.html
+++ b/kfet/templates/kfet/article.html
@@ -76,7 +76,6 @@
   </table>
 </div>
 
-<h2>Articles non vendus</h2>
 <h2>Article{{ not_sold_articles|length|pluralize }} non vendu{{ nots_sold_article|length|pluralize }}</h2>
 <div class="table-responsive">
   <table